SOFTWARE LOGIN

DezrezOne Minimum Specification

Computer
Connection Requirements
Microsoft Office
Servers
Domain Setup
Security Exceptions
SPF Record
Computer
Requirement Processor (CPU) Memory (RAM) Operating System Browser
 Minimum Intel i3 3GHz or equivalent 8GB RAM + Windows 10 Pro 64 BIT
 Internet Explorer 32 BIT
 RecommendedIntel  i5 4GHz or equivalent
 16GB RAM + Windows 10 Pro 64 BIT
 Internet Explorer 32 BIT
  • Individual users will require their own unique email address.
  • DezrezOne can only be installed on a Microsoft Windows operating system.
  • Microsoft Windows users will be required to install all recommended Windows updates.
  • Adobe Acrobat Reader DC installed on your computer to open PDF documents.
  • Adobe Flash Player is required to upload images against properties.
  • A screen resolution with a minimum width of 1024 pixels is required.
  • Over time your database will grow larger in size. When the size exceeds 2GB, you will be required to upgrade to the SQL Server Express editions as outlined on the server specification tab above.
  • If you are a MAC user who wishes to use DezrezOne, you will need to setup a virtual machine and install a supported Microsoft Windows operating system. To take advantage of our integration to Microsoft Office, this will need to be installed on the same virtual environment as the Microsoft Operating system. The virtual machine will need to have the same resource requirement as listed in the PC Specification tab above. We only support the following MAC’s running: Mac OS 10.14 or 10.15 editions.
Connection Requirements
User Count Internet Download Speed Internet Upload SpeedInternet Latency   Internal Network
 1 User 2 Mbps0.2 Mbps 100 ms  1000 Mbps
  • All broadband connections should be of business grade coupled with a commercial class broadband router / Ethernet switch (not a consumer home / SOHO router).
  • Should you wish to use a wireless network for client machines we insist that this is of Commercial Class and not a consumer variant.
  • Within your office you could have many different services running which utilise your office network as well as your broadband connection.
  • If you are using a VOIP service for communications then a separate broadband connection is recommended for it’s sole use. If this is not possible, Quality Of Service (QOS) will need to be setup to reserve connection speed for certain services, ensuring enough bandwidth is reserved for each software user.
  • Computers and servers will require the following ports to be opened within your firewall: UDP: 60, TCP: 100, TCP: 1433.
  • We understand some customers use a proxy within their agency, please implement the following exceptions - Download
Microsoft Office
SoftwareReziRezi PostRezi PMDezrezOne
 Microsoft Office 2019 CompatibleCompatible Compatible  Compatible
Microsoft Office 2016  CompatibleCompatible Compatible  Compatible
 Microsoft Office 2013IncompatibleIncompatibleIncompatible Compatible
 Microsoft Office 2010Incompatible IncompatibleIncompatible Compatible
  • Microsoft Office is to be installed locally on the device being used.
Servers
Requirement 2 Offices 3 - 4 Offices5 - 10 Offices11 + Offices
 Operating System Windows 10 Pro 64 BIT Windows 10 Pro 64 BIT Microsoft Server 2016 + Microsoft Server 2016 +
 SQL Version Microsoft SQL Express 2019  Microsoft SQL Express 2019   Microsoft SQL Express 2019   Microsoft SQL Express 2019
Processor (CPU   Intel i3 3.80GHz 9th Gen + Intel  i5 4.10GHz 10th Gen + Intel Xeon Bronze FamilyIntel Xeon Silver Family 
Memory (RAM)  12GB RAM + 16GB RAM + 24GB RAM + 32GB RAM +
 CTI CompliantYes Yes Yes Yes 
  • The server installed is for the sole use of DezrezOne. Any additional services the branch would like to utilise like Microsoft Exchange will need to be installed on a separate machine.
  • It is not recommended to install SQL Server on a domain controller. There are specific security restrictions when running SQL Server in this configuration and given the resource demands of a domain controller, SQL Server performance may be degraded. Source Microsoft
  • SQL Server Express editions have a 1GB memory pool limit. Over time your DezrezOne database will grow larger in size. Agencies using SQL Server Express editions with a database size is exceeding 1GB, you will experience degraded performance due to limitations in this SQL version.
  • If any branch in your agency utilises Terminal Services, we need to understand your setup before advising what server specification is required, please contact us for further details.
Domain Setup
As a domain administrator, you may want to restrict the permissions that domain users have on their local machines.  In these cases, it can be difficult to manage installation and updates for software that you want to allow users to run. When Dezrez deploy an update, end users may not be able to fully install them due to these account restrictions.


There are two steps that domain administrators can perform in order to grant users the ability to install dezrez updates, whilst still restricting write access to key windows folders, like the system32 folder. The below solution allows MSI packages to be run with elevated privileges, whilst restricting what MSIs are allowed to be run to just MSIs from dezrez. Your domain users do not need to have elevated privileges, and the rest of your security policy is unaffected.


IMPORTANT: This guide covers making changes to a Group Policy Object (GPO) - If you use the domain default GPO, all machines and users in the domain will be affected.


The first step is to use the Software Restriction Policy in your domain to allow MSIs to run, provided they are signed with the dezrez software publishing certificate.  Secondly, change a Windows Installer setting to allows approved MSIs to be run in elevated mode.

1. Software Restriction Policy - http://technet.microsoft.com/en-us/library/bb457006.aspx


Path Rule: Disallow *.MSI
Certificate Rule: Dezrez Services Ltd. certificate - Unrestricted.
The SPC for Dezrez components can be downloaded.

NOTE: If you do not want this setting to apply to local administrators, select "Software Restriction Policy" in the tree view, and select the "Enforcement" option.  Change the setting "Apply software restriction policies to the following users" to "All users except local administrators".


2. Windows Installer Service - 'Always Install Elevated' - http://support.microsoft.com/kb/259459

NOTE: This GPO change must be applied to both User and Computer objects in order to be effective - You may have to link the GPO to multiple Organisational Units (OUs) in order to achieve this

Firstly, open the Group Policy Editor, and edit the Group Policy you wish to change. Please note, this setting needs to be changed in two places in order to take effect for users - One setting in "Computer Configuration" and another in "User Configuration".

Expand "Computer Configuration" > "Administrative Templates" > "Windows Components" and select "Windows Installer". Locate the setting called "Always install with elevated privileges" and choose Enable.

Expand "User Configuration" > "Administrative Templates" > "Windows Components" and select "Windows Installer". Locate the setting called "Always install with elevated privileges" and choose Enable.

With the above two changes, dezrez installation and updates will be allowed even though the domain user may not have write access to system folders.

However, dezrez still requires write access to certain registry keys and folders, detailed below

Folder Access (Full Control required)
- %HOMEDRIVE%\Program Files\DezRez OffLine Editor
- %HOMEDRIVE%\ProgramData\Dezrez
- %HOMEDRIVE%\ProgramData\DezrezEAssistData
- The "Dezrez" subfolder of the My Documents location

Folder Access (Read + Execute required)
- %HOMEDRIVE%\Windows\System32
- %HOMEDRIVE%\Windows\SysWOW64

Registry Access (Read + Write required)
- HKEY_CURRENT_USER\Software\VB and VBA Program Settings (including subkeys)
  (Users should have read/write access to this key by default)

User Account Control
All client PC's must have User Account Control disabled for the dezrez software to function. Please note that this setting must remain disabled and not re-enabled after installation.

DISCLAIMER: The information in this article is provided without any warranty of any kind whatsoever. By accessing this service, you agree that Dezrez Services Ltd. will not be liable for any expenses, losses or costs that may be incurred by the interpretation and use of the information in this article, nor as a result of the information in this article being inaccurate or incomplete in any way.
Security Exceptions
In preparation for your move to Rezi. You will be required to add the below whitelist exceptions into your security software and firewall for http:// & https:// variants.
https://rezi.dezrez.com
https://dezrez.com
http://dezrez.com
https://id.dezrez.com
https://brochuremanager.dezrez.com
https://docs.dezrez.com
https://api.dezrez.com
https://signalr.dezrez.com
https://dc.services.visualstudio.com
https://www.inlinemanual.com
https://gravatar.com
https://marketing.dezrez.com
https://api-live-temp.cloudapp.net
https://auth.dezrez.com
https://rezipost.dezrez.com
https://gdpr-enable.dezrez.com
https://pdf-generator.dezrez.com
https://basiclettereditor.dezrez.com
https://contactpref.dezrez.com
https://documenteditor.dezrez.com
https://screenz.dezrez.com
https://screenzconfig.dezrez.com
https://docs.rezi.cloud
SPF Record
Dezrez requires a Sender Policy Framework (SPF) record with our specific mail server information to be authorised and identified to send email on behalf of your domain.


Don't have an SPF record?
If you do not have an SPF record for your domain please refer to the Sender Policy Framework website for more information.

Already have an SPF record for your domain?
No problem. You simply need to add the SendGrid & ANLX include mechanism lookup into your existing record before ~all :

include:anlx.net include:sendgrid.net

Last updated: 17th January 2020