Appendix A: IPSec Configuration File
139
NI Series WebConsole & Programming Guide
IPSec Web Configuration Interface
Once the IPSec Config file for a system has been created on a PC, the configuration of IPSec on a master
is accomplished via its Web interface. The following is a screen shot of the IPSec Security Settings page
and descriptions of each field (FIG.56). All setting and file modifications require a system reboot to
take effect.
The “Enabled” checkbox turns “on” and “off” the entire IPSec feature.
The CRL radio buttons indicate the level of Certificate Revocation List checking that is
performed for IPSec connections.
CRL Checking” checks the sources certificate while “CRL Checking (All)” checks all of
the certificates in a sources certificate chain. If either “CRL Checking” or “CRL Checking
(All)” are selected, then at least one certificate must be present in the CRL Certificates
directory on the master.
The Upload Configuration File section provides the capability to upload the IPSec Config
file onto a master. Simply browse to the file’s location on a PC, select the file, and select
“Submit”. The file will be uploaded to its proper location on the master.
There is no “delete” capability for the Config file. New uploads overwrite the existing
Config file.
The “Certificates”, “CA Certificates” and “CRL Certificates” sub-pages provide the ability
to upload certificates, certificate authority certificates and certificate revocation list
certificates respectively onto the master. Simply browse to the location of the certificate data
on the PC, select the file and select “Submit”. The selected file will be uploaded to the
appropriate directory on the master.
To delete a certificate file, simply select the desired file and select “Delete”. This will
cause the file to be removed from the master.
FIG. 56 IPSec Security Settings page