HaloCAD for Autodesk Vault
HaloCAD for Autodesk Vault
Breadcrumbs

Installation Manual

Introduction

Companies across various industries, including automotive, aviation, and high-tech, create and manage their intellectual property (IP) based on drawings. These drawings are created digitally using computer-aided design (CAD) applications and are shared with users outside the organization owing to business considerations. It's essential to understand the potential risks associated with sharing business information. Comprehensive security measures are crucial for mitigating risks and protecting sensitive data. HaloCAD, a purpose-built data protection solution, is designed to help organizations achieve this objective effectively.

How does HaloCAD for PLM protect your Data?

The HaloCAD for PLM solution integrates seamlessly with the PLM application, including the features of HaloCAD PROTECT and HaloCAD MONITOR, while utilizing Microsoft Purview Information Protection (MPIP), formerly Microsoft Information Protection (MIP), to provide Enterprise Digital Rights Management (EDRM) capabilities.

It provides access to MPIP-protected files, including label handling and privilege enforcement. Any file access actions, such as check-out or export, that may result in a download are intercepted by the HaloCAD for PLM solution, automatically protected based on predefined rules, and then delivered to the end user. Similarly, file access actions such as check-in or upload are intercepted and examined. If a protected file is detected, it is decrypted, and the unprotected file is returned to the PLM vault. For CAD users, the handling of CAD files remains seamless, as these processes occur entirely in the background. By applying MPIP labels, the solution ensures end-to-end security for CAD files, while all upload and download activities are continuously monitored and logged to provide complete traceability.

About this Manual

This manual walks you through the installation and configuration procedures unique to HaloCAD for Autodesk Vault.

Reference

Before proceeding with the instructions in this manual, administrators should:

  1. Review the Technical Reference Manual to understand HaloCAD’s architecture and prerequisites.

  2. Refer to the Release Notes to verify the supported CAD applications.

Reference Manuals

The table below describes where to obtain information in the HaloCAD documentation set.

For information on

Refer to

Step 1: For details on supported operating systems, file types, and CAD applications, see the Release Notes.

HaloCAD_AutodeskVault_ReleaseNotes_EN_Online.pdf

Step 2: Prerequisites

  1. Before installing, it is recommended that you fulfill the prerequisites, such as registering an application in Entra ID

  2. HaloCAD Architecture

  3. Registering an Application in Microsoft Entra ID - Web

  4. Office 365 Subscription Details

  5. Recommended URLs, Addresses, and Ports for MPIP

  6. Enable Support for TLS 1.2 at the Client Workstation for Microsoft Entra ID

HaloCAD_Technical_Reference_Manual_EN_Online.pdf

Step 3: How to install HaloCAD Add-on for NX/Creo.

  1. HaloCAD_AutoCAD_Manual_Installation_EN_Online.pdf

  2. HaloCAD_Inventor_Manual_Installation_EN_Online.pdf

Step 4: Install and configure HaloENGINE.

HaloENGINE_Manual_Installation_EN_Online.pdf

 

Step 5: Install and configure HaloCAD for Autodesk Vault.

Refer to the current manual.

Step 6: Workflow illustrating protection and decryption

HaloCAD_AutodeskVault_Manual_Operations_EN_Online.pdf

HaloCAD reference documentation

Component Functions

The following components are involved in HaloCAD architecture when deployed in an integrated environment:

  1. HaloCAD Add-on for CAD

  2. HaloCAD for Autodesk Vault

  3. HaloENGINE

  4. Azure RMS

The following list outlines the functions of each component.

HaloCAD Add-on for AutoCAD and Inventor performs the following functions:

  1. HaloCAD Add-on for AutoCAD - Operates within the Autodesk AutoCAD application.

  2. HaloCAD Add-on for Inventor - Operates within the Autodesk Inventor application.

  3. Receives protected files from Autodesk Vault and displays their associated labels while enforcing permissions.

  4. Logs all add-on–related activities for auditing purposes.

HaloCAD for Autodesk Vault performs the following functions:

  1. It can be hosted on the Autodesk Vault PLM Server or on a Windows server with the possibility to access the Autodesk Vault server.

  2. It is a proxy component that listens for check-in and check-out actions initiated via the PLM Vault server.

  3. Connects with Azure Rights Management Service (Azure RMS) to retrieve MPIP labels for file processing.

  4. Collects metadata for the user-selected file.

  5. Obtains action and label information for the user-selected file from HaloENGINE for file processing.

  6. Performs encryption and forwards the file stream to the CAD client during check-out operations.

  7. Performs decryption and stores the unprotected file in the PLM Vault during check-in operations.

  8. Logs HaloCAD for Autodesk Vault component activities to the local log and sends monitor logs to the HaloENGINE.

Recommendations for improving performance

Configure the labels to allow offline access. This must be configured in the Microsoft Purview portal under Items > Allow offline access > Always. Choosing this option could have an effect on the revocation process. Therefore, it needs to be taken into account when choosing the offline access option. Please refer to the Microsoft Documentation “ Restrict access to content by using sensitivity labels to apply encryption ”.

HaloENGINE performs the following functions:

  1. HaloENGINE is a Java-based server component that exposes a web service to HaloCAD for Autodesk Vault.

  2. Connects with Azure RMS to download MPIP labels and make them available for configuration.

  3. Implements business logic.

  4. Logs events received from HaloCAD for Autodesk Vault.

Microsoft Documentation

This manual assumes that you already have a complete setup of Microsoft Purview Information Protection and you are familiar with using the Microsoft Purview portal and related concepts. If you are new, you can refer to Microsoft's online documentation for setup and configuration.