0% found this document useful (0 votes)

21 views

doc-install

Uploaded by

Balai Polis Kg Raja

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

21 views

doc-install

Uploaded by

Balai Polis Kg Raja

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 49

Multiprotect License Protection User’s Guide 5.5.

0 Page: 1

DISCLAIMER

IDEMIA is warning all the users of this product that the conditions of use of
this product are described in the agreement defined between IDEMIA and
his customers.
As part of such conditions, it is forbidden to do reverse engineering on the
product and / or to upload / copy the product to external entities and by
doing so, to confer by agreement such external entities the right to perform
inappropriate actions on the product while this right has not been granted
by IDEMIA through writing.

This warning applies also to IDEMIA users.

Multiprotect License Protection

User’s Guide

Version 5.5.0
Reference: 2021_2000061212

INDUSTRIAL PROPERTY RIGHTS

The information contained in this document is the property of
IDEMIA. It is confidential and distributed with a specific aim.
The recipient shall ensure the proper safekeeping and
monitoring of this document and agrees neither to copy nor
reproduce it, in whole or in part, or to reveal its contents to
third parties, except in order to further the aim for which the
document was provided for them.
This applies to all pages of this document.

This document and the information it contains is the property of IDEMIA Group. It may not be used, reproduced or
transmitted to a third party without prior written approval.
Business restricted
Multiprotect License Protection User’s Guide 5.5.0 Page: 2

Table of contents
1) Release history.................................................................................................. 5
2) Introduction ...................................................................................................... 7
2.1) Description .................................................................................................. 7
2.2) Supported protections .................................................................................. 7
2.3) Supported platforms ..................................................................................... 8
2.4) Compatibility between different versions of the protection ................................. 9
2.5) Compatibility between a token server and Multiprotect License Protection ........... 9
3) Installing Multiprotect License Protection application .............................................10
3.1) Drivers installation for Hardware protection type .............................................10
3.1.1) SafeNet dongle installation .....................................................................10
3.1.1.1 SafeNet dongle on Linux ...............................................................10
3.1.1.2 SafeNet dongle on Windows ..........................................................10
3.1.2) MorphoDongle installation ......................................................................13
3.1.2.1 MorphoDongle on Linux Ubuntu .....................................................13
3.1.2.2 MorphoDongle on Linux RHEL/CentOS/OL .......................................14
3.1.2.3 MorphoDongle on Windows............................................................15
3.1.3) MSO on Windows ..................................................................................15
3.1.4) MTop on Windows .................................................................................15
3.1.5) MTopSlim on Windows ...........................................................................16
3.2) Multiprotect License Protection installation .....................................................16
3.2.1) Installing Multiprotect on Windows ..........................................................16
3.2.1.1 Silent mode installation.................................................................18
3.2.1.2 Uninstalling Multiprotect................................................................19
3.2.1.3 Downgrading Multiprotect .............................................................19
3.2.2) Installing Multiprotect on Linux ...............................................................19
3.2.2.1 RPM Linux installation procedure ....................................................19
3.2.2.2 Debian (Ubuntu) installation procedure ...........................................20
3.2.2.3 Installing Multiprotect manually on Linux ........................................21
3.2.2.4 Work directory on Linux ................................................................21
3.2.3) Installing Multiprotect on Android ............................................................21
4) Installing licenses .............................................................................................22
4.1) Checking licenses availability ........................................................................22
4.1.1) Licenses availability on Windows .............................................................22
4.1.2) Licenses availability on Linux ..................................................................23
4.1.3) Licenses availability on Android ...............................................................24
4.2) Adding new license......................................................................................25

4.2.1) Adding new licenses on Windows .............................................................25

4.2.2) Adding new licenses on Linux ..................................................................27
4.2.3) Adding new licenses on Android ..............................................................27
4.3) Getting a license .........................................................................................28
4.3.1) Obtaining hostID on Windows .................................................................29
4.3.2) Obtaining hostID on Linux ......................................................................30
4.3.3) Obtaining hostID on Android ...................................................................31
5) Configuring Multiprotect License Protection application ..........................................32
5.1) Configuration principle .................................................................................32
5.2) Communicating with a remote Token server ...................................................32
5.2.1) Communicating with RMS token server ....................................................32
5.2.2) Communicating with IDEMIA Multiprotect Token Server/MPaaS ...................33
5.3) List of configuration parameters ....................................................................35
5.4) List of environment variables ........................................................................40
6) How-To ...........................................................................................................41
6.1) How to Start/Stop/check Multiprotect License Protection service .......................41
6.1.1) Start/Stop/check Multiprotect License Protection service on Windows ..........41
6.1.2) Start/Stop/check Multiprotect License Protection service on Linux ...............41
6.2) How do I view/add license in MorphoAccess on Windows ..................................41
6.2.1) How to select a MorphoAccess.................................................................41
6.2.2) How to add license in MorphoAccess ........................................................42
6.3) How to know which Multiprotect version is installed? .......................................43
6.3.1) Which Multiprotect version is installed on Windows? ..................................43
6.3.2) Which Multiprotect version is installed on Linux? .......................................43
6.3.3) Which Multiprotect version is installed on Android? ....................................43
6.4) How to reduce memory footprint? .................................................................43
6.5) How to enable logs? ....................................................................................44
6.6) How to manually register Multiprotect as a Windows service? ...........................44
7) Troubleshooting ...............................................................................................45
7.1) Standalone software license and firewire IEEE 1394 on Windows ......................45
7.2) Standalone software license and bonding Ethernet interface .............................45
7.3) Standalone software license with laptop computer ..........................................45
7.4) Standalone software license on Linux and usb0 management console ................45
7.5) Standalone software license and Virtual Machine .............................................46
7.6) Software license with more than one Ethernet Card .........................................46
7.7) Software license have been installed successfully but is no longer valid .............46
7.8) Best practice for standalone license installation...............................................46

7.9) Reboot MASigma terminal ............................................................................47

7.10) hostID of software license has following format : 2004-*xxxxxxxxxxxxxxx .......47
7.11) Add software license success but did not see any license ................................48
7.12) A software license which has been installed is not valid after a reboot..............48
7.13) Cannot retrieve a network license from remote license server .........................48
7.14) Dongle protection is not working .................................................................48
7.15) Multiprotect service is consuming 100% of the CPU (rare case on Linux) ..........48
7.16) MTopSlim protection is not working .............................................................49
7.17) License is no more present on my Android phone ..........................................49

1) Release history
5.5.0 (12/2021)
 New features:
o Android: Support of Android 11 & 12
o Android: License_Admin apk not delivered anymore

5.4.0 (08/2021)
 New features:
o Support of communication with pool of IDEMIA Multiprotect Token Servers
(IMTS)
5.3.0 (07/2021)
 New features:
o Support of Ubuntu 20.04 LTS
o Linux: default work directory (used for lock file and log files) is changed from
/usr/sbin/Multiprotect to /var
o New parameter keys available: <mepLicensesPath>, <tx2LicensesPath>,
<useTx2Protection>, <multiprotectLockPath>
o New environment variable available: <MP_CONF_DIR>
 Updated:
o Tool to retrieve hostID is renamed (from GetSoftStandaloneLockCode into
GetSoftLockCode)
o Linux: parameter key updated <logDirectory>
 Bugs fixes:
o Incorrect management of license expiration
o Incorrect management of scan counter
o Grace period persistence file does not retain license parameters
5.2.1 (01/2021)
 New features:
o Added support of Windows Server 2019
o Added support of Red Hat Linux 8.x
o Add json_headerHost parameter (remote webserver communication)
 Updated:
o update §Compatibility between client and server
o Windows: MSO SDK updated (6.33.0 to 6.36.1)
o Android: merge of ndkr19c APKs into a single APK for easier deployment
 Bugs fixes:
o Windows: MSO detection is improved
o Linux: avoid having mpld & Multiprotect.service running at the same time
5.2.0 (11/2020)
 New features for remote webserver communication (MPaaS):
o Linux client info sent to webserver in GPB format
o improve license error management in case of configuration mistakes
o separate token's life duration and client info frequency
o decrease retry counter to reduce network footprint
o Multiprotect client behind a secured proxy: add proxy parameters
 Bugs fixes:
o string format of installed licenses was changed
5.1.4 (10/2020)
 New features:
o Windows: multiprotect setup includes vcredist14 for automatic installation

o Linux: support of SafeNet dongle on Ubuntu 18.04

o Linux & Windows: multiprotect upgrade is now available
o Android: Multiprotect client build info are now available in apk
o Android: GUI enhancements of License_Admin apk
o Android: Capability to identify OS version at apk launch to prevent
compatibilities problems
 Updated:
o update installation procedure of MorphoDongle on linux
o set enable_22x_compatibility and enable_3x_compatibility to false by
default
 Bugs fixes:
o Linux: if pipe is broken, service could consume 100% of CPU (rare case)
o Linux: MorphoDongle ACR3xT was not detected in Linux
o Android: improve overall stability
o Windows: “Add license” feature was not working properly
o Windows: if no internet access, Multiprotect service was not starting in
smooth manner
5.1.2 (08/2020)
 Android (from 5 to 10):
o Support of Android 10 added (armv7, armv8, arm64-v8a)
o New ndk19c delivery is using Android API level 27 with following features:
 Add QR code generation for hostID
 Improve GUI of android applications
o MSO SDK updated (6.26.0 to 6.33.0)
 Windows:
o vcredist14 is required
o MSO SDK updated (6.26.0 to 6.33.0)
 Dongles:
o From now on, SafeNet dongle or MorphoDongle must be plugged in before
Multiprotect starts
o Only MorphoDongle ACS is supported (HID no longer supported)
 Added a disclaimer regarding Multiprotect License Protection usage
 Drivers for MSO, MTop & MorphoDongle are not delivered in Multiprotect package
anymore
 User Guide updated (supported OS, troubleshooting§, etc.)
5.0.2 (06/2019) on Windows / Linux
 Android support with access to remove webserver (MPaaS)
5.0.0 (04/2019) on Windows / Linux
 Add protocol Multiprotect as a Service protection
 NOTE: AIX / Android / iOS / Windows Phone not supported

2) Introduction
Multiprotect License Protection is a component which manages different protection types
(with external hardware protection device or machine-lock protection). It stores licenses
and made them available to other IDEMIA components to allow/deny access to specific
functions.
If an IDEMIA component, which uses Multiprotect License Protection, does not work, you
have to:
1. Install Multiprotect License Protection
2. Ask for licenses to IDEMIA (or use a preloaded hardware such as a dongle or MSO)
(licenses definition and licenses use are defined by each component).
3. Install licenses provided by IDEMIA
Multiprotect License Protection is available on Windows, Linux and Android platforms.

2.1) Description

Multiprotect License Protection is composed essentially of 3 elements:

 A service/daemon which collects licenses available and allows others components
to ask for specific licenses
 A Manager (Graphic UI or console) which shows the installed licenses and stores
new licenses in the protection’s hardware
 A tool to install licenses concatenated in a file (useful for deployment on a large set
of computers)
Tool Windows Linux Android
Service X X X
Manager (GUI) X X
Manager (Console) X X

fig1. Multiprotect License Protection components availability by platform

2.2) Supported protections

Multiprotect License Protection supports the following protections (fig2):

 MorphoDongle (hardware)
 MSO (IDEMIA single fingerprint sensor - hardware)
 SafeNet Dongle (hardware)
 MTop (IDEMIA multiple fingerprint sensor - hardware)
 MTopSlim (IDEMIA multiple fingerprint sensor - hardware)
 Software/standalone (Machine-locked) protection (associated with computer or
terminal) – not compatible with Virtual Machine

 Network licenses:
o RMS token server (to be deployed on premises)
o IDEMIA Multiprotect Token Server (MPaaS to be accessed over internet or
to be deployed on premises)

Protection Type
MorphoDongle Hardware
MSO Hardware
SafeNet Dongle Hardware
MTop Hardware
MTop Slim Hardware
Machine locked (Software/Standalone) Software
Network Software

fig2. Types of the protections

2.3) Supported platforms

Multiprotect License Protection is available for the following platforms (fig3):

 Microsoft Windows Server 2019, 2016, 2012 and 2012 R2 (x64),
 Microsoft Windows 10 (x64) and Windows 7 (x64),
 Red Hat, Oracle Linux 8.X (x64) and 7.X (x64),
 Ubuntu 16.04 LTS, 18.04 LTS and 20.04 LTS (x64),
 Android (ndk10 delivery) from 5 to 9
 Android (ndk19 intent delivery) from 8 to 12

Protection Windows Linux Android

MorphoDongle X X
MSO/CBM X X
SafeNet Dongle X X
MTop X
MTopSlim X
Machine locked (Software/Standalone) X X X
Network - RMS token server X X
Network – IDEMIA Multiprotect Token X X X
License server/MPaaS

fig3. Protection availability by platform

2.4) Compatibility between different versions of the protection

An old client can always talk to latest version of the protection but a new client might not
communicate with an old version of the protection.
Current version is compatible with all client versions from v3.3 onwards.

2.5) Compatibility between a token server and Multiprotect License

Protection

As described in chapter §2.2), 2 network modes are supported by Multiprotect License

Protection:
 RMS token server
 Multiprotect Token License server/MPaaS

Since Multiprotect License Protection v5.0.0, both network modes are supported (for
configuration, see chapter §5.2) however, Multiprotect License Protection v4.x supports
only RMS token server.

An old daemon can always use a new token server, but a new daemon may have
compatibility issues with an old token server.

3) Installing Multiprotect License Protection application

3.1) Drivers installation for Hardware protection type

This section applies to Hardware Protections (see list of support Hardware Protections in
chapter §2.2). If you need Hardware Protections, please install the associated driver on
your system before deploying the Multiprotect License Protection software.

3.1.1) SafeNet dongle installation

3.1.1.1 SafeNet dongle on Linux

To install SafeNet dongle driver, launch script Install_Multiprotect.sh and select option 2
(install SafeNet dongle driver).

To use MorphoDongle protection, it is NECESSARY that app_conf file is added in the

directory which contains multiprotect. Add in it: useSafenetDongle=1 and restart the
service.

Since Multiprotect License Protection v5.1.x, dongle must be plugged before

Multiprotect application starts.

3.1.1.2 SafeNet dongle on Windows

Do not plug your dongle before installing driver otherwise dongle might not be
detected.

You should be logged as an administrator to install drivers or run setup as an

administrator.

Please use latest version of driver provided with the SafeNet dongle.

Launch Sentinel System Driver Installer x.y.z.exe and follow InstallShield Wizard steps
described below:

Click on Next button.

Select “I accept the terms in the license agreement” and click on Next button.

Select Complete choice and click on Next button.

Click on Install button.

When installation has been successfully performed, click on Finish button.

Since Multiprotect License Protection v5.1.x, dongle must be plugged before

Multiprotect application starts.

3.1.2) MorphoDongle installation

Multiprotect supports MorphoDongle with ACS ACR38T, ACR38T-D1 and ACR39T readers.

3.1.2.1 MorphoDongle on Linux Ubuntu

Required packages:
- PCSC daemon (pcscd) and libraries (libpcsclite): Middleware to access a smart card
using PC/SC.
- CCID driver (libccid): Generic USB CCID (Chip/Smart Card Interface Devices) driver

Package installation on Ubuntu:

apt-get install pcscd
(the required libraries are added as dependencies of the daemon)

To use MorphoDongle protection, it is NECESSARY that:

- pcsc daemon (pcscd) is started
- app_conf file is added in the directory which contains multiprotect. Add in it:
useMorphoDongle=1 and restart the service.

Since Multiprotect License Protection v5.1.x, dongle must be plugged before

Multiprotect application starts.

3.1.2.2 MorphoDongle on Linux RHEL/CentOS/OL

MorphoDongle does not work on RHEL 5.X

Package installation on RHEL/CentOS/OL:

yum install pcsc-lite
(the required libraries are added as dependencies of the daemon)

To use MorphoDongle protection, it is NECESSARY that:

- pcsc daemon (pcscd) is started
- app_conf file is added in the directory which contains multiprotect. Add in it:
useMorphoDongle=1 and restart the service.
- For RHEL 6.x, the package openct must be uninstalled using the command rpm -e –
nodeps otherwise MorphoDongle is not recognized (there is an incompatibility issue
between openct and ACR38 driver)

Since Multiprotect License Protection v5.1.x, dongle must be plugged before

Multiprotect application starts.

3.1.2.3 MorphoDongle on Windows

On Windows 10, there is no need to install a driver to use ACS SIM card reader. You can
skip this step.

Do not plug your dongle before installing driver otherwise dongle might not be
detected.

Since Multiprotect License Protection v5.1.x, dongle must be plugged before

Multiprotect application starts.

You should be logged as an administrator to install drivers or run setup as an

administrator.

On Windows 10, there is no need to install a driver to use ACS SIM card reader. For others
Windows OS versions, please launch Setup.exe located in drivers\MorphoDongle
directory

3.1.3) MSO on Windows

Do not plug your device before installing drivers otherwise your device might not
be detected.

You should be logged as an administrator to install drivers or run setup as an

administrator.

Please use latest version of driver provided with the MSO device.

3.1.4) MTop on Windows

Do not plug your device before installing drivers otherwise your device might not
be detected.

You should be logged as an administrator to install drivers or run setup as an

administrator.

Please use latest version of driver provided with the MTop device.

3.1.5) MTopSlim on Windows

Do not plug your device before installing drivers otherwise your device might not
be detected.

You should be logged as an administrator to install drivers or run setup as an

administrator.

Please use latest version of driver provided with the MTopSlim device.
You also have to install vcredist10.exe.

3.2) Multiprotect License Protection installation

3.2.1) Installing Multiprotect on Windows

This paragraph describes the installation steps of Multiprotect License Protection on
Windows.
Multiprotect License Protection runs as a Windows service and is by default automatically
registered in Windows and launched.

If you plan to use the MTopSlim protection, please install vcredist10.exe,

first.

Procedure:
VERY IMPORTANT: You must install Multiprotect License Protection software with
Administrator rights.

Launch Multiprotect_License_Protection_Installer.msi with administrator rights (right click

on mouse button and click on “Install”).

Choose installation mode. Unless there is an error during installation, choose “copy and
install service”.
NOTE: If you choose “copy only” option, then license service will not be registered in
Windows.

Select Installation folder:

Confirm installation:

3.2.1.1 Silent mode installation

Please execute following commands as an administrator:

msiexec /i Multiprotect_License_Protection_Installer.msi /quiet

3.2.1.2 Uninstalling Multiprotect

There are three possibilities to uninstall Multiprotect:
1) Go to add/remove programs in windows configuration panel and uninstall “Multiprotect
License Protection”.
2) Run the shortcut in “Start / All Programs / Multiprotect / Uninstall Multiprotect License
Protection”.
3) Run the uninstall.bat in the installation directory (by default in C:\Program
Files\Multiprotect)

3.2.1.3 Downgrading Multiprotect

Downgrade of Multiprotect License Protection is not supported.
If you want to install an old version, please uninstall the application manually.

3.2.2) Installing Multiprotect on Linux

We strongly recommend using RPM installation on the system where RPM is the
default package format. For Ubuntu, we recommend to use .deb installation
package.

3.2.2.1 RPM Linux installation procedure

A full RPM is delivered (multiprotect-x.x.x-1.abc.rpm where x.x.x is version and abc is the
platform).

VERY IMPORTANT: You must be logged as root to install the protection.

Prerequisites:
 On OL or RHEL, please verify that these packages are installed:
libgudev1.x86_64, libgudev1-devel. x86_64

Procedure:
Please install Multiprotect License Protection with following yum command so libraries
glibc.i686, compat-libstdc++-33.i686 and libstdc++.i686 would be installed automatically:
yum install –y multiprotect-x.x.x-1.abc.rpm

Protection’s daemon is created and respawned automatically.

3.2.2.1.1 Uninstalling Multiprotect

To uninstall Multiprotect License Protection, execute the following command in the terminal
console:
yum erase –y multiprotect

3.2.2.1.2 Downgrading Multiprotect

Downgrade of Multiprotect License Protection is not supported. If you want to install an old
version, please uninstall the application manually.

3.2.2.2 Debian (Ubuntu) installation procedure

A DEB is delivered (multiprotect_x.x.x_abc.deb where x.x.x is version and abc is the
platform).

VERY IMPORTANT: You must be logged as root to install the protection.

Prerequisites:
 please verify that this package is installed: libudev1

Procedure:
1/ Install dependencies:
You can launch the script Install_Multiprotect.sh and choose the first option.
or launch these two commands:
apt-get install -y libc6-i386 lib32stdc++6 lib32gcc1 lib32ncurses5 lib32z1
dpkg --add-architecture i386
2/ Follow standard dpkg installation: dpkg -i multiprotect_x.x.x_abc.deb

Protection’s daemon is created and respawned automatically.

3.2.2.2.1 Uninstalling Multiprotect

To remove protection from dpkg, launch following command in terminal console:
dpkg -P multiprotect

3.2.2.2.2 Downgrading Multiprotect

Downgrade of Multiprotect License Protection is not supported. If you want to install an old
version, please uninstall the application manually.

3.2.2.3 Installing Multiprotect manually on Linux

If you want to do a manual installation (like an RPM):
1/ You have to include every binary beginning with Multiprotect prefix (and SafeNet dongle
driver if you plan to use SafeNet dongle).
2/ Then Multiprotect_License_daemon must be started as root during boot. Other users
could also be used but root user is our recommended option (validation of component is
made with root user only).

3.2.2.4 Work directory on Linux

Work directory (for lock file and log files) is /var as follow:
 /var/log/mp for Multiprotect trace/log files (created by Multiprotect License
Protection installer)
 /var/run for lock file multiprotect.lock
If you want to change work directory, please use <multiprotectLockPath> &
<logDirectory> parameters defined in chapter §5.3).

Prior to Multiprotect License Protection v5.3.0, work directory was

/usr/sbin/Multiprotect

3.2.3) Installing Multiprotect on Android

To use Multiprotect application on Android, 2 APKs are delivered:

APK filename Description
Multiprotect_License_Protection.apk Main application to manage licenses.
(mandatory) Called ‘daemon’

Multiprotect_License_Manager.apk This application has graphical user

(optional) interface to install new licenses and
to test hostID & available licenses

Procedure:
Once “License Service” is installed, please click on License Service icon to launch it or
you can also restart your device.

Installation of these APKs may require that you enable installation of apk from
unknown source. You can temporarily enable this feature and disable it when
installation is over. These APKs do not contain any unsafe element.

4) Installing licenses
This section describes the licenses generation procedure and the licenses used by
Multiprotect License Protection.

4.1) Checking licenses availability

To check the availability of the licenses, open Multiprotect License Protection. It will
automatically detect all available licenses and a detailed description of licenses.

4.1.1) Licenses availability on Windows

In Windows, there are 2 ways: Multiprotect License GUI or Windows console.

Multiprotect License GUI

From Windows Start Menu Button, select Multiprotect License Manager (GUI) application

Multiprotect License Manager (GUI) application will list the Installed License as follow:

fig4. Multiprotect License Manager (Windows GUI version)

Windows console
In a Windows DOS console, type the following commands:
cd C:\Program Files\Multiprotect
Multiprotect_Console_License_Manager.exe -all

Multiprotect Console License Manager will list the Installed License as follow:

fig5. Multiprotect License Manager (Windows Console version)

4.1.2) Licenses availability on Linux

Execute the following command from a terminal:

Multiprotect_Manager

Multiprotect Console License Manager will list the Installed License as follow:

fig6. Multiprotect License Manager (Linux Console version)

4.1.3) Licenses availability on Android

Launch the Multiprotect License Manager application to display the licenses available:

fig7. Multiprotect License Manager (Android GUI version)

4.2) Adding new license

This section does not apply to licenses retrieved from remove license server. Please
refer to chapter §5.2) for communicating with a remote Token server.

Pre-requisites: IDEMIA had generated a license for your machine (see chapter §4.3).

4.2.1) Adding new licenses on Windows

In Windows, there are 3 ways: Multiprotect GUI, Windows console, specific directory.

Adding new licenses via Multiprotect License GUI

From Windows Start Menu Button, select Multiprotect License Manager (GUI) application

Click on the “add license” button. A new window appears:

fig8. Add licenses with Windows GUI

Click the “browse” button then an open file dialog appears. Choose the license file provided
by IDEMIA.

You can control installed license thanks to chapter §4.1).

Adding new licenses via windows console

In a Windows DOS console, type the following commands:
cd C:\Program Files\Multiprotect
Multiprotect_AddLicense.exe

Its usage is:

Multiprotect_AddLicense SerialNumber License Key
Multiprotect_AddLicense LicenseFile
LicenseFile is the name of the file containing the license to add.
Multiprotect_AddLicense works with all licenses.

fig9. Add licenses with Windows console

Examples:
Multiprotect_AddLicense my_license_file
Multiprotect_AddLicense 32327 LIC1;LIC2 A98792371D46A4732A80

You can control installed license thanks to chapter §4.1).

Adding new licenses via specific directory

To install a standalone machine-locked (software) license, you can also copy license file
called lservrc in c:\licences folder (This folder is created by this service. You should wait
for at least 30 seconds to show licenses).
If you want to change this folder location, please use environment variable
<LSDEFAULTDIR> as defined in chapter §0.

You can control installed license thanks to chapter §4.1).

4.2.2) Adding new licenses on Linux

On Linux, execute the following command:

Multiprotect_Add_License LicenseFile
LicenseFile is the name of the file containing the license to add.

fig10. Add licenses with Linux

You can control installed license thanks to chapter §4.1).

To install a machine standalone license file (called lservrc), you can also copy lservrc
file in Multiprotect_License_Daemon directory and license will be automatically
installed (you should wait for at least 30 seconds to show licenses).

4.2.3) Adding new licenses on Android

Installing a license can be done in 3 ways:

1. license is a QR code: select “scan license” and take a picture of the QR code given
by IDEMIA.
2. license is a file: copy the license file to the terminal and import in the application
(select “add license”)
3. license is a string: type in the license string and hit “add license”

fig11. Add licenses with Android

You can control installed license thanks to chapter §4.1).

On IDEMIA Tablet devices only, CBM (single fingerprint sensor) can be used to store/get
licenses.
If you plan to add licenses to CBM sensor, then no fingerprint acquisition should be
performed while performing this operation and CBM must be powered on.

4.3) Getting a license

Reminder: Standalone Software license is not compatible with Virtual Machine

IDEMIA needs the hostID of the machine in order to generate a license. Please contact
IDEMIA representatives by providing hostID of the machine(s).

4.3.1) Obtaining hostID on Windows

In Windows, there are 2 ways: Multiprotect License GUI or Windows console.

Obtaining hostID via Multiprotect License GUI

From Windows Start Menu Button, select Multiprotect License Manager (GUI) application:

Several hostIDs (serials) may be available depending on your setup:

- In red: hostID for machine-locked – standalone protection
- In orange: hostID for MSO fingerprint sensor protection

You can copy hostID to clipboard by doing right click on the hostID value.

Obtaining hostID via windows command line

This tool does not need to have Multiprotect License Protection installed.
Recommended for automation of fleet management.

Open a command prompt and execute the following commands:

cd C:\Program Files\Multiprotect
GetSoftLockCode.exe

It returns the hostID of the machine as follow

fig12. Display hostID via Windows command line

Tool usage is:

GetSoftLockCode option
--help –h : Display this message
--version –v : Display protection version used to build tool
-hdd : Display code linked to hard disk
-allnet : Display codes for all network cards
-all : Display all codes

4.3.2) Obtaining hostID on Linux

Execute the following command as root:

GetSoftLockCode

It returns the hostID of the machine. Otherwise, if GetSoftLockCode is executed without

root privilege, you will get “Operation not permitted, program needs to be run as root”
message.

Tool usage is:

4.3.3) Obtaining hostID on Android

Obtaining the hostID on Android can be done in 2 ways:

1. Display a QR code: from the license manager select “Display QR” button,
2. Copy serial to clipboard or file: on the license manager, select settings on the top
right corner to have copy options

fig13. Display hostID in QR code

5) Configuring Multiprotect License Protection application

5.1) Configuration principle

The configuration of the service is done in app_conf file (no extension after this file). By
default, configuration file is located in:
- for linux environments: /usr/sbin/Multiprotect
- for windows environments: the execution folder of the service on windows
- for Android: android\data\com.morpho.multiprotectservice\files\MultiprotectConf

This app_conf file may contain network configuration to access token license servers,
additional parameters to enable/disable specific protections or to enable logs.

If daemon/service is already launched, please restart the device or daemon/service

so that new configuration is used.

For linux environments, if you want the configuration files to be somewhere other
than default directory, you can use environment variable <MP_CONF_DIR> as
follow (see parameter defined in chapter §5.4):
- edit the /etc/systemd/system/Multiprotect.service file generated after installation
- add following new line
Environment=MP_CONF_DIR=<your_configfiles_path>
This has the effect to define a new environment variable <MP_CONF_DIR> only known
inside the service, and not visible outside.
Warning#1: for the service to take into account the modification Multiprotect.service file,
you must run command: systemctl daemon-reload
then systemctl start Multiprotect
Warning#2: if Multiprotect is uninstalled, and/or reinstalled, the environment variable is
permanently lost. You must enter this variable again in the Multiprotect.service file.

5.2) Communicating with a remote Token server

5.2.1) Communicating with RMS token server

As described in 2.3), this mode is not supported for Android environments.

To use following configuration, you have to install on at least one remote machine a token
server which can distribute tokens to machines (For Token Server information, please refer
to Token Server installation guide).

The configuration must contains at least the following 3 keys:

 serverSoft: 0 (disabled, default value) or 1 (enabled)
 remoteLicence: list of licenses to ask to remote server. The licenses must be
separated by semicolons
 licenceServer: the names of the remote servers (2 servers must be set in this
field) to interrogate separated by a colon. You can specify the name or the IP
address of the servers.

Additional parameters such as communication via a secure web proxy are described
in chapter §5.3)

Example 1:
Here, we will talk to a redundant license server pool (made of 3 servers) and try to get
LICENSE1, LICENSE2 and LICENSE3 from this pool of server.
# Enable communication with remote server
serverSoft=1
# License list to check on server
remoteLicence=LICENSE1;LICENSE2;LICENSE3
# Servers
licenceServer=<rmsserver1>~<rmsserver2>~<rmsserver3>

Example 2:
Here, we will talk to a single token license server pool and try to get LICENSE1, and
LICENSE3 from this server.
# Enable communication with remote server
serverSoft=1
# License list to check on server
remoteLicence=LICENSE1;LICENSE3
# Servers
licenceServer=<rmsserver1>

5.2.2) Communicating with IDEMIA Multiprotect Token Server/MPaaS

To use following configuration, you need access to IDEMIA Multiprotect Token

Server/MPaaS (Please contact IDEMIA team to get a project provisioning with the licenses
you need).

IDEMIA will provide you a projectKey. This project key is sufficient to use your quota
of licenses and should be considered as sensitive.

Configuration can contain following elements:

 json_serverSoft: 0 (disabled, default value) or 1 (connection to IDEMIA
Multiprotect Token Server/MPaaS)
 json_remoteLicence: the list of licenses to ask to remote server. The licenses
must be separated by semicolons
 json_licenceServer: the list of IP address or name of the remote servers. Each
one is separated by a ~ character
 json_serverProtocol: http (default value) or https
 json_serverPort: the communication port with remote Server (80, default value)
 json_projectKey: the name of the project containing the licenses (given by
Multiprotect team during provisioning)
 json_clearOnExit: 0 (disabled, persist tokens for reuse, default value on Android)
or 1 (enabled, release licenses on exit in MPaaS, default value for other
environments – MANDATORY in container mode)

Additional parameters such as communication via a secure web proxy are described
in §5.3)

Example 1: remote communication to server

Here, we will talk to a Web Server and try to get LICENSE1, LICENSE2 and LICENSE3
# Enable communication with remote WebServer
json_serverSoft=1
# License list to check on server
json_remoteLicence=LICENSE1;LICENSE2;LICENSE3
# Web Server
json_licenceServer=<webserver>
# Server Port
json_serverPort=<SERVERPORT>
# Project key
json_projectKey=<PROJECTKEY>

Example 2: Hybrid communication

Here, we will talk
 to a Web Server and try to get LICENSE1, LICENSE2
 to a machine-locked RMS Server and try to get LICENSE11, LICENSE12, LICENSE13
# 1. Communication with remote WebServer
json_serverSoft=1
json_remoteLicence=LICENSE1;LICENSE2
json_licenceServer=<webserver>
json_serverPort=<SERVERPORT>
json_projectKey=<PROJECTKEY>

# 2. Communication with remote Rms Server

serverSoft=1
remoteLicence=LICENSE11;LICENSE12;LICENSE13
licenceServer=<rmsserver>

5.3) List of configuration parameters

Multiprotect relies on a text configuration file to retrieve its run parameters: app_conf (no
extension, files to be set in the run folder of the Tools)
This page lists and describes the parameters available. All parameters are set in the files
on single lines in the form <parameter>=<value>

If you add a # character at the beginning of a line, this line is considered as a

comment.

Parameter Values Default Description

value

runAsService 0 or 1 1 Defines if the binary will launch a

forked process in background and exit
or run interactive

serverSoft 0 or 1 0 Activates or deactivates (default) the

capacity to retrieve license tokens
from a Sentinel RMS server

remoteLicence list separated List of licenses to retrieve on the

by ; Sentinel RMS token server

licenceServer ip or List of servers on which Multiprotect

hostnames, will try to retrieve licenses. In case of
separated by Failure, there is a fallback to a
~ or ; broadcast on the local network to
discover an available server.

nbMaxTryUpdate number 4 Maximum number of token update

errors before the daemon considers
the license lost

nbUpdateOk number 4 Number of successful updates needed

before canceling the error count

serverPort port number 5093 Port on which the daemon will try to
connect

poolSize number 40 on non arm number of threads in the pool that the
architectures service used to listen to application
license requests
1 on arm
architectures

thriftPoolSize number 3 number of threads in the pool that the

service used to listen to application
license requests (arm architectures
only)

poolFrequency number 10

Parameter Values Default Description

value

max_try number 10000 maximum number of try in

ToolShareServer

request_timeout number 60000 timeout value in ToolShareServer

(milliseconds
)

lsDefaultDir path C:\\licences Sentinel LM LSDEFAULTDIR value

(Windows) where the software license file will be
looked for
/usr/sbin/Multi
protect (Linux)

captor_scan_dela number 10 Limits the scan frequency on

y MSO/MTop/TopS (default 5min
instead of 30s for other protections) -
Added in v4.16.1

global_timeout_re number (milli 1000 Timeout on client/server

ad seconds) configurations

global_timeout_w number (milli 1000 Timeout on client/server

rite seconds) configurations

client_timeout_re number (milli 1000 Timeout on client/server

ad seconds) configurations

client_timeout_wr number (milli 1000 Timeout on client/server

ite seconds) configurations

useMTop 0 or 1 1 if windows Do we take into account the licenses

available in a connected MTop
0 on other
environments

useTOPS 0 or 1 1 on Windows Do we take into account the licenses

available in a connected TopS
0 on other
environments

lockMultipleCards 0 or 1 0 Do we lock license on all available

network cards or only the first one

useSafenetDongle 0 or 1 1 on windows Do we allow licenses locked to a

Safenet dongle
0 on other
environments

enable_22x_comp 0 or 1 0 Does the daemon accept requests

atibility from clients linked to Multiprotect 2.x
versions.
Disabled by default from
version 5.1.4

Parameter Values Default Description

value

enable_3x_compa 0 or 1 0 Does the daemon accept requests

tibility from clients linked to Multiprotect 3.x
versions
Disabled by default from
version 5.1.4

enable_4x_compa 0 or 1 1 Does the daemon accept requests

tibility from clients linked to Multiprotect 4.x
versions

useMSO 0 or 1 1 Do we take into account the licenses

available in a connected MSO

useMorphoDongle 0 or 1 1 on windows Do we take into account the licenses

available in a connected
0 on other MorphoDongle
environments

useSoftLicense 0 or 1 1 Do we take into account the software

licenses available

useMepProtection 0 or 1 1 on linux/arm Do we take into account the MEP

architectures licenses

0 on other
environments

mepLicensesPath string /usr/sbin/Multi Path of MEP standalone license file

protect Available for Arm64 only, from
v5.3.0

mtoplibrarypath path /opt/morpho/ path to the folder containing the mtop

morphotop- libraries
sdk-
12.6.26.0/lib

topslibrarypath path /usr/local/lib/ path to the folder containing the live

morpholivesca scan libraries
n-sdk

changeDirectory 0 or 1 1

ACR38T_D1 string "ACS CCID Name of the ACR38 reader accepted

USB Reader 0" for morphodongle access
on windows

"ACS ACR38U-
CCID 00 00"
on linux

"ACS ACR
38U-CCID 00
00" (debian
only)

Parameter Values Default Description

value

HID_OMNIKEY string "OMNIKEY Name of the omnikey reader accepted

CardMan 3x21 for morphodongle access.
0" on windows

"HID_OMNIKE
Y", "OMNIKEY
CardMan
(076B:3021)
3x21 00 00"
on linux

consoleLog 0 or 1 0 set to 1 to have Multiprotect output its

log to stdout

enableLog 0 or 1 0 activate or deactivate Multiprotect

logs

logLevel number 0 log level (from 0 to 4, error only to

trace level)

logDirectory path Linux: folder where the log files will be

/var/log/mp created (defaults to binary folder)
Other
environments: For Linux, default is changed
binary folder from v5.3.0

enableFiltering 0 or 1 0 allows the definition of filters on which

source files will be allowed to output
logs

filters string list of source files (separator ;) from

which logs will be accepted

max_lines number 50000 maximum number of lines written in a

log file before changing file
(srv_trace_0.log, then
srv_trace_1.log, …)

json_serverSoft 0 or 1 0 activates or deactivates (default) the

capacity to retrieve license tokens
from IDEMIA Multiprotect Token
Server solution

json_remoteLicen string list of licenses to ask to remote

ce server. The licenses must be
separated by semicolons

json_licenceServe ip or IDEMIA Multiprotect Token server(s)

r hostnames, on which Multiprotect will try to
separated by retrieve licenses (IP address or name
~ or ; of the server).
Can be a list of servers if each server
is separated by a ~character. In case
of Failure, there is a fallback to
discover an available server.

Parameter Values Default Description

value

json_serverProtoc string http Protocol (http or https)

json_serverPort number 80 the communication port with Web

Server

json_projectKey string the name of the project containing the

licenses

json_renewThresh number 90 the threshold (percentage) at which

old the tokens are renewed

json_clearOnExit 0 or 1 0 on Android persist tokens on file for reuse (0) or

release licenses on exit (1).
1 on other In container mode, keep default
environments value (1)

json_clientInfo 0 or 1 1 activate or deactivate retrieving

license manager information

json_proxy string proxy to use to access IDEMIA

Multiprotect Token server

json_proxyuser string username to authenticate to proxy

json_proxypasswo string password to authenticate to proxy

json_headerHost string DNS name of the “on premises”

frontal server (ingress). For example:
“licensing.idemia.com”

statistics_buffer_ number 2000000 Maximum size in bytes of statistics

memory_limit data buffered in Multiprotect
service/daemon

mbss_stats_path string /data/mbss/st Full path of statistics file of MBSS

ats/requestSta product
ts.gpb

useTx2Protection 0 or 1 1 Do we take into account the TX2

licenses
Available for TX2 board only,
from v5.3.0

tx2LicensesPath string /usr/sbin/Multi Path of TX2 licenses file

protect mp_license_file
Available for TX2 board only,
from v5.3.0

multiprotectLockP string /var/run Path of multiprotect.lock file

ath
For Linux only, from v5.3.0

5.4) List of environment variables

Multiprotect License Protection also supports following environment variables

Variable OS Description Default behavior

if variable does
not exist

LSDEFAULTDIR Windows Variable to identify where the software software license file
license file is located. is read from
C:\\licences
You have to create a system
environment variable (do not
create a user environment
variable) called <LSDEFAULTDIR> and
set folder where license file will be copied
(you must generally restart your
computer to have this modification set).
New folder must have enough read/write
permission (SYSTEM permission) so that
a license can be read/write by service
called Multiprotect License Service

Linux software license file

You have to create a system is read from
environment variable called /usr/sbin/Multiprot
<LSDEFAULTDIR> This ect
environment variable are located in
/etc/systemd/system/Multiprotect.service
file under Service section as
Environment=LSDEFAULTDIR=”New
folder”, this New folder must have
enough read/write permission (SYSTEM
permission) so that a license can be
read/write by service called Multiprotect
License Service

MP_CONF_DIR Linux Path of configuration files (for instance configuration files

slm_conf, app_conf) are located in
/usr/sbin/Multiprot
From v5.3.0 ect

6) How-To

6.1) How to Start/Stop/check Multiprotect License Protection service

6.1.1) Start/Stop/check Multiprotect License Protection service on

Windows

If you want to start or stop Multiprotect, it can be done on 2 ways:

1. Go to Windows Services Panel (execute services.msc) and search for Multiprotect

License Service to start/stop/restart Multiprotect.

2. Launch command prompt as administrator (cmd.exe) and type: net start/stop

“Multiprotect License Service”
If you just want to check if service is running, go to services.msc and see its status.

6.1.2) Start/Stop/check Multiprotect License Protection service on Linux

You can start, stop or restart the server using these commands depending on your OS:

 OS supporting systemd, use systemctl start/stop/restart

Multiprotect.service. (Multiprotect is the name of the service).

 OS supporting init, use service mpld start/stop/restart. (mpld is the name of

the service).

 OS supporting Upstart, use initctl start/stop/restart mpld. (mpld is the

name of the service).

You can check that Multiprotect is running by different ways depending on the distribution
you are on.

 OS supporting systemd, use systemctl status Multiprotect.service.

 OS supporting init.d, use service mpld status.

6.2) How do I view/add license in MorphoAccess on Windows

6.2.1) How to select a MorphoAccess

To communicate with a MorphoAccess, you have to know its IP address (IPV4 or IPV6).
You can first check that MorphoAccess is reachable by using ping command.
On License Manager GUI, right click on button and click on Select a MorphoAccess

Then a dialog box is displayed to select your MorphoAccess:

You have to choose IP address of MorphoAccess (IPV6/IPV6), then fill IP value and port
number (default port is 11010).
Then click on OK button and communication with MA will be done. If MorphoAccess is not
reachable, this operation can take up to 30s.
Once communication with MorphoAccess is OK, its hostID and licenses are displayed in
main window.

Once you have finished to use a MorphoAccess, you can select another MorphoAccess by
clicking on right mouse button and then click on left mouse button on Remove selected
MorphoAccess.

Selected MorphoAccess will not be used anymore.

6.2.2) How to add license in MorphoAccess

Once you have selected a MorphoAccess, you can add licenses as described in chapter
§4.2).

VERY IMPORTANT:
Once you have added license in MorphoAccess Sigma, you should reboot it or
unplug (unpower) it at least 30s later (do not unplug it immediately after license
installation). Otherwise, license in MASigma might not be available after next reboot.

6.3) How to know which Multiprotect version is installed?

6.3.1) Which Multiprotect version is installed on Windows?

You can see the version in the Multiprotect License Protection GUI and also via a command
line: open a command prompt and execute the following commands:
cd C:\Program Files\Multiprotect
Multiprotect_License_Protection.exe -v

6.3.2) Which Multiprotect version is installed on Linux?

Execute the following command from a terminal:

/usr/sbin/Multiprotect_License_daemon –v

6.3.3) Which Multiprotect version is installed on Android?

Start License Manager app and go to settings > About

A pop-up will display version of the application.

6.4) How to reduce memory footprint?

By default, all types of protections are enabled in Multiprotect License Protection. If you
have memory constraints, you can disable some protections (see list of parameters in
§5.3).

For instance, if you want to enable only machine-locked (standalone) protection, you can
disable all others protection types (hardware and network) as follow:
1/ please create a file app_conf with the following values:
useTOPS=0
useMTop=0
useMSO=0
useMorphoDongle=0
useSafenetDongle=0
useMepProtection=0
useTx2Protection=0
serverSoft=0

2/ restart Multiprotect License Manager service

6.5) How to enable logs?

1/ In the installation folder of Multiprotect License Manager, please create a file app_conf
with the following values:
enableLog=1
logLevel=2
2/ Then restart Multiprotect License Manager service.

Log file srv_trace_x.log will be created.

6.6) How to manually register Multiprotect as a Windows service?

Needed only if you have installed Multiprotect License Protection version with “Copy only”
option.

Procedure:
1/ Open a command prompt (cmd.exe) and move to the directory in which you installed
the service. You should be logged as an Administrator or launch cmd as an Administrator.
2/ Install the service by executing the following command from the directory in which you
installed the service: Multiprotect_License_Protection.exe -i

7) Troubleshooting

7.1) Standalone software license and firewire IEEE 1394 on Windows

If your PC has IEEE 1394 (firewire) interface and if you plan to use software standalone
license, then to generate standalone software license for this computer, you have to:
- Disable FireWire (IEEE1394) interface (in device manager)
- Wait at least 30s and get ID of standalone software license (this id will not
be dependent of your IEEE1394 interface)
- Then, enable your FireWire (IEEE 1394 interface)
If you do not disable IEEE1394 interface, then next time you reboot your computer, your
license might not be valid anymore.

7.2) Standalone software license and bonding Ethernet interface

If you plan to use bonding Ethernet interface, we recommend you to lock your software
standalone license to one of these two Ethernet card. Look at chapter 7.6.

7.3) Standalone software license with laptop computer

On some laptop computer, Ethernet interface is disabled if no cable is plugged. This could
lead to change in you standalone software id. In energy saving panel (or in BIOS), disable
automatic Ethernet interface disabling if no cable is plugged (could change from computer
to computer)

7.4) Standalone software license on Linux and usb0 management

console

If you have a management console on Linux using usb0 interface, we recommend you to
perform same action that with FireWire 1394 on Windows.
- Disable usb0 interface (with command ifconfig usb0 down)
- Wait at least 30s and get ID of standalone software license (this id will not
be dependent of your usb0 interface)
- Enable your usb0 interface (command ifconfig usb0 up)

If you do not disable usb0 interface, then next time you reboot your computer, your license
might not be valid anymore.

7.5) Standalone software license and Virtual Machine

Standalone Software license is not compatible with Virtual Machine (VMWare, VirtualBox,
etc.). If you plan to use standalone software license then you should use Multiprotect token
server (see §2.2).

7.6) Software license with more than one Ethernet Card

To enable locking to multiple Ethernet card on a server computer, you have to:
- Create a file app_conf
- Add following line to app_conf file:
lockMultipleCards=1
- Restart daemon (restart using common daemon command or kill daemon)
or Windows Service (restart in Services Management window)
Then, if you have multiple Ethernet card (up to 6 supported), your id will have following
format: 2010-*xxxxxxxxxxxxxxx, 2010-*yyyyyyyyyyyyyyy i.e. 2 standard id separated
by a comma.
If one of these 2 ethernet cards is no longer available, then license will still be valid.

7.7) Software license have been installed successfully but is no longer

valid

Please check your computer time. Set valid time on your computer and restart service.

7.8) Best practice for standalone license installation

Disable every elements which can have a MAC address and keep only MAC address you
want to attach your license to.
Then,
1) Ask for generation
2) Install licenses
3) Enable every elements which have a MAC address
Your licenses will always be locked to your computer without any risk of license
disappearing because locked to an invalid element.

7.9) Reboot MASigma terminal

On main screen or MASigma, click on unlock icon located in bottom left side of screen (red
square in following image).

Then enter passport (default password is “12345” and should have been changed) and
click on validation button on screen.

If default password has been used, terminal will warn you to change it. Click on validation
button (and change default password as indicated in MASigma user’s guide).
Then you can click on Reboot icon and terminal will ask to confirm reboot. Click on
validation button and MASigma will reboot safely.

7.10) hostID of software license has following format : 2004-

*xxxxxxxxxxxxxxx

If you have this kind of hostID, then your network is disabled. Enable at least one Ethernet
interface.

7.11) Add software license success but did not see any license

First check your computer time and set a valid time if needed.
Then, if you are on a Virtual Machine (VM), standalone software license are not compatible
on VM.

7.12) A software license which has been installed is not valid after a
reboot

On many computers, we use some MAC address as a locking criterion. If MAC address
which has been used for locking change, then previous license is not valid and another
locking code is displayed.
To be sure to be locked to a fixed and immutable MAC address, disable every virtual device
which can provide a MAC address and use this locking code.
This issue can also be linked with issues described in chapter 7.1 or 7.3

7.13) Cannot retrieve a network license from remote license server

If Multiprotect License Protection is configured to communicate with RMS token server,

please check that your firewall does not block UDP port 5093. To do this test, you can
temporarily disable your firewall if enabled and check if license retrieval succeed, then re-
enable your firewall and add new rules to open this UDP port.

This issue can also occurs if configuration file has not been filled or if there is an error in
configuration file. Check app_conf configuration file (see chapter 5.2.1).

7.14) Dongle protection is not working

Since Multiprotect License Protection v5.1.x, SafeNet dongle or MorphoDongle must be

plugged before Multiprotect application starts.
In order to read a dongle protection, computer or Multiprotect service should be restarted.

7.15) Multiprotect service is consuming 100% of the CPU (rare case on

Linux)

Multiprotect service is using /tmp folder to create pipe communication with others threads.
If /tmp/mp and/or /tmp/run folders are cleaned-up, then Multiprotect service cannot
work properly.
To prevent this, following exceptions are automatically added in tmp.conf file by
Multiprotect installer:

# Add protection license exception

x /tmp/mp
x /tmp/run

If you are facing such problem, please check tmp.conf file and restart Multiprotect service.

Depending on your OS, tmp.conf file is located as follows

/usr/lib/tmpfiles.d/tmp.conf, or /run/tmpfiles.d/tmp.conf or
/etc/tmpfiles.d/tmp.conf.

7.16) MTopSlim protection is not working

MTopSlim requires vcredist10.

Please make sure vcredist10.exe is installed. Then reinstall MTopSlim driver and restart
Multiprotect service at the end.

7.17) License is no more present on my Android phone

If after a while you notice license is no more present on my Android phone, there are 2
options:
 If there are more than 3 foreground services, Android OS will nominate the oldest
service as a candidate for scavenging and termination. Please restart Multiprotect
License Service application or restart your Android device and avoid having too
many service in foreground
 Some phone manufacturers had set up a battery saving policy, which could move
Multiprotect License Service in hibernation mode (for instance HUAWEI). In order
to let manufacturer manager License Service’s power manually, please go under
Settings  Battery  Launch. Disable your automatic app power management and
make it manual.

This document and the information it contains is the property of IDEMIA Group. It may not be used, reproduced or
transmitted to a third party without prior written approval.
Business restricted

PVTP Manual
100% (1)
PVTP Manual
446 pages
Digital Innovation Adoption: Architectural Recommendations and Security Solutions
From Everand
Digital Innovation Adoption: Architectural Recommendations and Security Solutions
Muhammad Ehsan Rana
No ratings yet
ShadowProtect 4.0 User Guide
No ratings yet
ShadowProtect 4.0 User Guide
101 pages
BIM Development and Trends in Developing Countries: Case Studies
From Everand
BIM Development and Trends in Developing Countries: Case Studies
Heap-Yih Chong
No ratings yet
LP Docu4 PDF
No ratings yet
LP Docu4 PDF
960 pages
Industry 4.0 Convergence with AI, IoT, Big Data and Cloud Computing: Fundamentals, Challenges and Applications
From Everand
Industry 4.0 Convergence with AI, IoT, Big Data and Cloud Computing: Fundamentals, Challenges and Applications
Parikshit N. Mahalle
No ratings yet
Cyber Forensics and Investigation on Smart Devices: Volume 1
From Everand
Cyber Forensics and Investigation on Smart Devices: Volume 1
Akashdeep Bhardwaj
No ratings yet
LP Docu
No ratings yet
LP Docu
1,024 pages
Microsoft Windows Intune 2.0: Quickstart Administration
From Everand
Microsoft Windows Intune 2.0: Quickstart Administration
David Overton
No ratings yet
LicensingUserGuide
No ratings yet
LicensingUserGuide
87 pages
Multistage Interconnection Network Design for Engineers
From Everand
Multistage Interconnection Network Design for Engineers
Shilpa Gupta
No ratings yet
Safe Use of Smart Devices in Systems Important to Safety in Nuclear Power Plants
From Everand
Safe Use of Smart Devices in Systems Important to Safety in Nuclear Power Plants
IAEA
No ratings yet
User Manual_Virbox Protector
No ratings yet
User Manual_Virbox Protector
58 pages
Multiprog Programming Manual 1.0
No ratings yet
Multiprog Programming Manual 1.0
169 pages
Heidelberg Prinect Licensing EN
No ratings yet
Heidelberg Prinect Licensing EN
142 pages
Minitab Express Installation Guide PC-En
No ratings yet
Minitab Express Installation Guide PC-En
24 pages
BitDefender Handbook
No ratings yet
BitDefender Handbook
158 pages
IoT-enabled Sensor Networks: Architecture, Methodologies, Security, and Futuristic Applications
From Everand
IoT-enabled Sensor Networks: Architecture, Methodologies, Security, and Futuristic Applications
Samayveer Singh
No ratings yet
New Age Cyber Threat Mitigation for Cloud Computing Networks
From Everand
New Age Cyber Threat Mitigation for Cloud Computing Networks
Akashdeep Bhardwaj
No ratings yet
Malwarebytes Anti-Malware Unmanaged Client Administrator Guide
No ratings yet
Malwarebytes Anti-Malware Unmanaged Client Administrator Guide
48 pages
Installation Guide 16.6
100% (1)
Installation Guide 16.6
10 pages
HB Quarterly Quoting Handbook Addendum
No ratings yet
HB Quarterly Quoting Handbook Addendum
393 pages
Software Patterns Made Easy
From Everand
Software Patterns Made Easy
Justice Nanhou
No ratings yet
The Role of AI in Enhancing IoT-Cloud Applications
From Everand
The Role of AI in Enhancing IoT-Cloud Applications
Ambika Nagaraj
No ratings yet
DLOAdminGuide en 7 6
No ratings yet
DLOAdminGuide en 7 6
326 pages
Manage SW Ie3d
No ratings yet
Manage SW Ie3d
89 pages
Bitdefdener Ultimate En
No ratings yet
Bitdefdener Ultimate En
305 pages
Polarity Index In Proteins - A Bioinformatics Tool
From Everand
Polarity Index In Proteins - A Bioinformatics Tool
Carlos Polanco
No ratings yet
IT Survival Guide !!!: Avoid Disaster, Cut Cost, Protect Your Sh*t!
From Everand
IT Survival Guide !!!: Avoid Disaster, Cut Cost, Protect Your Sh*t!
Alp Ertunga Isin
No ratings yet
SPLMLicensing User Guide
No ratings yet
SPLMLicensing User Guide
33 pages
Policing and Safety Measures
From Everand
Policing and Safety Measures
Aditya Prajapat
No ratings yet
Smart Home and Industrial IoT Devices: Critical Perspectives on Cyberthreats, Frameworks and Protocols
From Everand
Smart Home and Industrial IoT Devices: Critical Perspectives on Cyberthreats, Frameworks and Protocols
Akashdeep Bhardwaj
No ratings yet
DLO AdminGuide 8.0
No ratings yet
DLO AdminGuide 8.0
260 pages
Datasheet EPP Panda Security
No ratings yet
Datasheet EPP Panda Security
2 pages
XVL Products License Management Guide
No ratings yet
XVL Products License Management Guide
46 pages
DLOAdminGuide en
No ratings yet
DLOAdminGuide en
319 pages
MGC Licen
No ratings yet
MGC Licen
95 pages
Anatomy, Modeling and Biomaterial Fabrication for Dental and Maxillofacial Applications
From Everand
Anatomy, Modeling and Biomaterial Fabrication for Dental and Maxillofacial Applications
Andy Choi
No ratings yet
Multi-Objective Optimization in Theory and Practice II: Metaheuristic Algorithms
From Everand
Multi-Objective Optimization in Theory and Practice II: Metaheuristic Algorithms
Andre A. Keller
No ratings yet
Minitab Express Installation Guide Mac-En
No ratings yet
Minitab Express Installation Guide Mac-En
24 pages
Autodesk Licensing Guide: Autocad 2013
No ratings yet
Autodesk Licensing Guide: Autocad 2013
68 pages
NDLP 931 PG A En-Us
No ratings yet
NDLP 931 PG A En-Us
349 pages
Keep Your PC Safe From Virus And Data Loss
From Everand
Keep Your PC Safe From Virus And Data Loss
Jeannine Hill
No ratings yet
Siemens PLM Licensing User Guide: April 2018
No ratings yet
Siemens PLM Licensing User Guide: April 2018
34 pages
Cloud Computing : Beginners And Intermediate User Guide
From Everand
Cloud Computing : Beginners And Intermediate User Guide
David comer
No ratings yet
The Cyber Security Handbook – Prepare for, respond to and recover from cyber attacks
From Everand
The Cyber Security Handbook – Prepare for, respond to and recover from cyber attacks
Alan Calder
No ratings yet
EN_Bitdefender3145
No ratings yet
EN_Bitdefender3145
284 pages
Flexman Installation and Configuration Guide
No ratings yet
Flexman Installation and Configuration Guide
38 pages
Flexman 5 - 2 Installation and Configuration Guide PDF
No ratings yet
Flexman 5 - 2 Installation and Configuration Guide PDF
38 pages
Esm 960 PG En-Us
No ratings yet
Esm 960 PG En-Us
537 pages
Flexlm
No ratings yet
Flexlm
81 pages
Challenges and Approaches for Selecting, Assessing and Qualifying Commercial Industrial Digital Instrumentation and Control Equipment for Use in Nuclear Power Plant Applications
From Everand
Challenges and Approaches for Selecting, Assessing and Qualifying Commercial Industrial Digital Instrumentation and Control Equipment for Use in Nuclear Power Plant Applications
IAEA
No ratings yet
DLP 1130 PG A00 En-Us
No ratings yet
DLP 1130 PG A00 En-Us
277 pages
Adsk Lic
No ratings yet
Adsk Lic
60 pages
CAN Bus for Beginners: A Practical Guide to Automotive Networking
From Everand
CAN Bus for Beginners: A Practical Guide to Automotive Networking
Mohamad Charara
No ratings yet
Computer Security Aspects of Design for Instrumentation and Control Systems at Nuclear Power Plants
From Everand
Computer Security Aspects of Design for Instrumentation and Control Systems at Nuclear Power Plants
IAEA
No ratings yet
DLOAdminGuide en
No ratings yet
DLOAdminGuide en
346 pages
Unisphere For VMAX Product Guide V1.5.1
67% (3)
Unisphere For VMAX Product Guide V1.5.1
534 pages
In Ven Sys License Manager Guide
No ratings yet
In Ven Sys License Manager Guide
80 pages
Thank-You For Downloading The User Guide Template!: Templates Repository For Software Development Process (Click Here)
No ratings yet
Thank-You For Downloading The User Guide Template!: Templates Repository For Software Development Process (Click Here)
7 pages
Dominant Algorithms to Evaluate Artificial Intelligence:From the View of Throughput Model
From Everand
Dominant Algorithms to Evaluate Artificial Intelligence:From the View of Throughput Model
Waymond Rodgers
No ratings yet
Account 1888
No ratings yet
Account 1888
6 pages
Sinr Rssi & RSRP
No ratings yet
Sinr Rssi & RSRP
21 pages
Stalkersoup Installation Guide 1.1.0017A: Preparation
No ratings yet
Stalkersoup Installation Guide 1.1.0017A: Preparation
11 pages
Manual Estacion Total Leica TC 407 PDF
100% (1)
Manual Estacion Total Leica TC 407 PDF
5 pages
Ir Esources Anager: Envista
No ratings yet
Ir Esources Anager: Envista
4 pages
EagleRIP4.0 Quick Start
No ratings yet
EagleRIP4.0 Quick Start
20 pages
Installing Intel® Oneapi HPC Toolkit: Step 1: Prerequisite Software
No ratings yet
Installing Intel® Oneapi HPC Toolkit: Step 1: Prerequisite Software
4 pages
The Case of Intel and The Case of Mircosoft
100% (1)
The Case of Intel and The Case of Mircosoft
3 pages
Davi D Gyor I: Personal Det Ail S
No ratings yet
Davi D Gyor I: Personal Det Ail S
2 pages
Install Peachtree PDF
No ratings yet
Install Peachtree PDF
20 pages
Spreadsheet Tools LockXLS 2020 v7.1.3 - ShareAppsCrack
No ratings yet
Spreadsheet Tools LockXLS 2020 v7.1.3 - ShareAppsCrack
9 pages
SR.P80.20160222 Software 5.1 Release For The P80 Console
No ratings yet
SR.P80.20160222 Software 5.1 Release For The P80 Console
1 page
Windows 10 X64 6in1 Build 14393.693 ESD en-US Feb 2017 (Gen2)
100% (1)
Windows 10 X64 6in1 Build 14393.693 ESD en-US Feb 2017 (Gen2)
2 pages
Canon Mf8380cdw Printer Manual
No ratings yet
Canon Mf8380cdw Printer Manual
39 pages
BSNL Problem
No ratings yet
BSNL Problem
8 pages
Ww-A4sp-2.03 Ad
No ratings yet
Ww-A4sp-2.03 Ad
3 pages
PC Repair Course Outline
100% (1)
PC Repair Course Outline
3 pages
Srs - Document - For - Hotel - Management - System Example
No ratings yet
Srs - Document - For - Hotel - Management - System Example
53 pages
CORSAIR ICUE Software Release Notes
No ratings yet
CORSAIR ICUE Software Release Notes
27 pages
Latest CV
No ratings yet
Latest CV
3 pages
Game.crash
No ratings yet
Game.crash
29 pages
Datacard® SD260L™/SD360™/SD460™ Card Printers Installation and Administrator's Guide
No ratings yet
Datacard® SD260L™/SD360™/SD460™ Card Printers Installation and Administrator's Guide
130 pages
Best Practice Security VMware Horizon
No ratings yet
Best Practice Security VMware Horizon
18 pages
Automated Teller Machine ATM
No ratings yet
Automated Teller Machine ATM
17 pages
Install Manual Dymola
No ratings yet
Install Manual Dymola
42 pages
XD10118 Deploy ESX - The Ultimate Guide
No ratings yet
XD10118 Deploy ESX - The Ultimate Guide
31 pages
Max17201gevkit Max17211xevkit
No ratings yet
Max17201gevkit Max17211xevkit
24 pages
Windows & Office Keys
No ratings yet
Windows & Office Keys
31 pages
Microsoft Azure1 PDF
No ratings yet
Microsoft Azure1 PDF
452 pages