Manuals / AMX / Computer Equipment / Network Card

AMX NI-3000, NI-4000, NI-2000 Default Security Configuration, Main Security Menu Cont, Description

Models: NI-2000 NI-4000 NI-3000

1 134

Download 134 pages 57.78 Kb

Page 111

Main Security Menu (Cont.)

NetLinx Security with a Terminal Connection

Main Security Menu (Cont.)

Command

Description

13)Make changes permanent by saving to When changes are made to the security settings of the

flash	Master, they are initially only changed in RAM and are not
	automatically saved permanently into flash. This selection
	saved the current security settings into flash. Also, if you
	attempt to exit the Main Security Menu and the security
	settings have changed but not made permanent, you will
	be prompted to save the settings at that time.

14) Reset Database	If a user has been given "administrator rights", this
	additional menu option is displayed. This selection will
	reset the security database to its Default Security
	Configuration settings, erasing all users and groups that
	were added. This is a permanent change and you will be
	asked to verify this before the database is reset.

15) Display Database	If a user has been given "administrator rights", this
	additional menu option is displayed. This selection will
	display the current security settings to the terminal
	(excluding user passwords).

Default Security Configuration

By default, the NetLinx Master will create the following accounts, access rights, directory associations, and security options.

Account 1:User Name: administrator

Password:password

Group:administrator

Rights:All

Directory Association: /*

Account 2:	User Name: NetLinx
Password:	password
Group:	none
Rights:	FTP Access
Directory Association:	none
Group 1:	Group: administrator
Rights:	All
Directory Association:	/*
Security Options:	FTP Security Enabled
	Admin Change Password Security Enabled
	All other options disabled

The administrator user account cannot be deleted or modified with the exception of its password. Only a user with "Change Admin Password Access" rights can change the administrator password.

The NetLinx user account is created to be compatible with previous NetLinx Master firmware versions.

The administrator group account cannot be deleted or modified.

The FTP Security and Admin Change Password Security are always enabled and cannot be disabled.

NetLinx Integrated Controllers	105

Image 111

AMX NI-3000, NI-4000, NI-2000 instruction manual Default Security Configuration, Main Security Menu Cont, Description

Contents

NetLinx Central Controllers and Cards NetLinx Integrated Controllersinstruction manual NI-2000, NI-3000, and NI-4000AMX Limited Warranty and Disclaimer Introduction Table of ContentsQuick Setup and Configuration Overview Connections and WiringInstallation and Upgrading Configuration and Firmware UpdateNetLinx Security and Web Server NetLinx Security with a Terminal Connection Programming TroubleshootingNI-2000 Specifications IntroductionNetLinx Integrated Master Controller Features Introduction NI-2000 SpecificationsDimensions HWD WeightNetLinx Integrated Controllers NI-2000 Specifications ContFront Panel Components Rear Panel ComponentsNI-2000 Specifications Cont IntroductionThe D notation is used to explicitly represent a device number Optional Accessories NI-3000 SpecificationsNI-2000 Specifications Cont Included AccessoriesRear switchIntroduction FrontWeight NI-3000 Specifications ContDimensions HWD Power requirementsNI-3000 Specifications Cont IntroductionRear Panel Components The D notation is used to explicitly represent a device number NI-3000 Specifications ContIncluded Accessories IntroductionNI-3000 Specifications Cont NI-4000 SpecificationsWeight NI-4000 SpecificationsDimensions HWD Power requirementsNI-4000 Specifications Cont IntroductionRear Panel Components NetLinx Integrated Controllers NI-4000 Specifications ContIntroduction The D notation is used to explicitly represent a device numberIntroduction NI-4000 Specifications ContIncluded Accessories Optional AccessoriesQuick Setup and Configuration Overview Installation ProceduresConfiguration and Communication IP recommended Update the Controller and Control Card FirmwareProgram NetLinx Security into the On-Board Master Studio to the most recent releaseBaud Rate Settings on the Configuration DIP Switch Connections and WiringSetting the Configuration DIP Switch for the Program Port Baud rate settingsModes and LED Blink Patterns Wiring GuidelinesModes and Front Panel LED Blink Patterns Using the Configuration DIP switchWiring Guidelines - NI-2000 @ 700 mA Preparing captive wiresWiring length guidelines Wiring Guidelines - NI-4000 & NI-3000@ 900 mAUsing the 4-pin mini-Phoenix connector for data with external power Using the 4-pin mini-Phoenix connector for data and powerProgram Port Connections and Wiring RS-232/422/485 Device Port Wiring SpecificationsProgram Port, Pinouts, and Signals Connections and Wiring ICSNet RJ-45 Connections/WiringRS-232/422/485 Device Port Wiring Specifications ICSNet RJ-45 SignalsICSHub OUT port Ethernet 10/100 Base-T RJ-45 Connections/WiringICSHub OUT Pinouts and Signals Ethernet RJ-45 Pinouts and SignalsEthernet Ports Used by the NetLinx Integrated Controllers Relay Connections and WiringEthernet LEDs Ethernet ports used by the Integrated ControllersRelay connections Input/Output I/O Connections and WiringIR/Serial Connector Wiring Specifications IR/Serial Connections and WiringI/O Port Wiring Specifications NI-4000 and NI-3000 I/O Port Wiring Specifications NI-2000NetLinx Integrated Controllers NetLinx Control Card Slot Connector NI-4000 unit onlyConnections and Wiring FIG. 17 NetLinx Control Card 20-pin connectorNetLinx Integrated Controllers Connections and WiringInstalling NetLinx Control Cards NI-4000 Only Installation and UpgradingDevicePortSystem DPS Setting the NetLinx Control Card Addresses NI-4000 OnlyAccessing the internal components on an Integrated Controller Compact Flash UpgradesRemoving NetLinx Control Cards NI-4000 Only Optional Compact Flash UpgradesInstallation of Compact Flash upgrades Closing and Securing the Integrated Controller Installing the Integrated Controller into an Equipment Rack Install screws Bracket Rack Mounting HolesFIG. 22 Mounting Integrated Controller into an equipment rack 10. Apply power to the unit by using an active PSN power supply NetLinx Integrated Controllers Installation and UpgradingConfiguration and Firmware Update Communicating with the Master via the Program PortBefore beginning Select Diagnostics Device Addressing from the Main menu Setting the System ValueUsing multiple NetLinx Masters Changing the Device Address on a NetLinx Device Select Diagnostics Device Addressing from the Main menuthere is a problem, use a system value of zero 0 on the Master Resetting the Factory Default System and Device Values Select Diagnostics Device Addressing from the Main menuRecommended NetLinx Device numbers Obtaining the Master’s IP Address using DHCP 1. Select Diagnostics Network Addresses from the Main menu Assigning a Static IP to the NetLinx MasterCommunicating with the On-board Master via an IP FIG. 28 Assigning Communication Settings and TCP/IP Settings Upgrading the On-board Master Firmware via an IP Verifying the current version of NetLinx Master Firmware6. Select the NI Master’s KIT file from the Files section FIG FIG. 31 Assigning Communication Settings and TCP/IP Settings Upgrading the NI Controller Firmware via an IPConfiguration and Firmware Update Upgrading the new NI Controller firmware via an IPNetLinx Integrated Controllers 6. Enter the Device number of the target NetLinx Integrated Controller Upgrading the Control Card Firmware via an IP 13. Right-click the associated System number and select Refresh System. This establishes a new connection to the specified System and populates the list with devices on that system. The communication method is then highlighted in green on the bottom of the NetLinx Studio window NetLinx Security and Web Server NetLinx Security web browser and feature supportSupported Browser and Feature Compatibility HTTP Web Server Security FTP Security New Master Firmware Security FeaturesNetLinx Security Terms Master Security Telnet Security Terminal RS232 Program port securityAccessing the NetLinx Master via its IP Address WebControl TabNetLinx Security Terms Cont Security Options FTP Security - Enabled Default Security ConfigurationWebControl Tab Features Default Security ConfigurationSecurity Tab Security Tab FeaturesSecurity link is selected Feature Security Tab Features ContSecurity tab - Enable Security page Security System FeaturesSecurity System Features Cont Security tab - Add Group pageAdd Group Entries Add Group Entries Cont Security tab - Modify Group pageModify Group Entries Security tab - Group Directory Associations page Modify Group Entries ContNetLinx Security and Web Server FeatureValid Directory Association Entries Group Directory Association EntriesNetLinx Security and Web Server FeatureSecurity tab - Add User page Add User EntriesModify User Entries Security tab - Modify User pageSecurity tab - User Directory Associations page Modify User Entries ContUser Directory Association Entries Valid Directory Association EntriesServer Certificate Entries Security tab - SSL Server Certificate pagecertificate because the Master Key has been changed Server Certificate Entries ContFIG. 45 Security Tab - Import Certificate field Security tab - Export Certificate Request pageSecurity tab - Import Certificate page FIG. 44 Security Tab - Export Certificate Request fieldSystem Tab Show Devices TabNetwork Tab FIG. 48 Security tab - showing NetLinx Master security options Master Security Setup ProceduresThe administrator group account cannot be deleted or modified Adding a Group and assigning their access rightsFIG. 50 Security tab - showing the Modify Group access rights fields Modifying an existing Group’s access rightsDeleting an existing Group Showing a list of authorized GroupsValid Directory Association Entries Adding a Group directory associationDeleting a directory association The administrator user account cannot be deleted or modifiedConfirming the new directory association 2. Click the Directory Associations linkNetLinx cannot be used since they already exist Adding a User and configuring their access rightsModifying an existing User’s access rights Deleting a User Showing a list of authorized UsersAdding a User directory association Deleting a directory association SSL Certificate ProceduresConfirming the new directory association 2. Click the Directory Associations linkThe city/province name must be fully spelled out Self-Generating a SSL Server Certificate RequestThis domain name does not need to be a resolvable URL Address when self-generating a certificateThe state/province name must be fully spelled out Creating a Request for a SSL Server CertificateBefore importing a CA server certificate, you must Importing a CA certificate to the Master over a secure SSL connectionRegenerating an SSL Server Certificate Request Display SSL Server Certificate Information7. Before exiting the Master and beginning another session Common Steps for Requesting a Certificate from a CA4. Enter the name of the server being used this is the Master Accessing an SSL-Enabled Master via an IP Address 7. Click Next to proceed with the certificate storage process Using your NetLinx Master to control the G4 panel FIG. 60 WebControl VNC installation and Password entry screens Using your NetLinx Master to control the G3 panela new certificate from your current CA What to do when a Certificate ExpiresNetLinx Security Features NetLinx Security FeaturesInitial Setup via a Terminal Connection NetLinx Security with a Terminal ConnectionAccessing the Security configuration options If NetLinx Master security is not enabled, you will see the following Security Options Menu Option 2 - Display system security options for NetLinx MasterOption 3 - Add user Edit User Menu Option 4 - Edit UserNetLinx Security with a Terminal Connection Access Rights MenuCommand Edit User MenuOption 7 - Add Group Access Rights MenuOption 5 - Delete user Option 6 - Show the list of authorized usersEdit Group Menu Add directory association Edit Group MenuEdit Group menu Change Access Rights Edit Group menu Delete directory associationEdit Group menu List directory associations Edit Group menu Display Access Rights Option 8 - Edit GroupOption 9 - Delete Group Option 13 - Make changes permanent by saving to flash Option 11 - Set Telnet Timeout in secondsOption 12 - Display Telnet Timeout in seconds Option 10 - Show List of Authorized GroupsNetLinx Security with a Terminal Connection Main Security MenuCommand Main Security MenuDefault Security Configuration Main Security Menu ContDescription NetLinx Security with a Terminal Connection CommandHelp menu Help Menu OptionsHelp Menu Options Cont Logging Into a SessionLogout Setup SecurityHelp Security DevicePortSystem DPS Using the ID ButtonProgramming Converting Axcess Code to NetLinx CodeProgram Port Commands PC COM Port Communication SettingsProgram Port Commands Program Port Commands Cont SET IP DPS Program Port Commands ContWindowsTM client programs ESC Pass CodesNotes on Specific Telnet/Terminal Clients Escape Pass CodesLED SendCommands LED Disable/Enable SendCommandsRS-232/422/485 SendCommands RS232/422/485 Ports ChannelsRS-232/422/485 SendCommands Cont RXOFF RS-232/422/485 SendCommands ContHSON RXCLRRS-232/422/485 SendString Escape Sequences RS-232/422/485 SendCommands ContRS-232/422/485 SendString Escape Sequences IR/Serial SendCommands IR/Serial SendCommandsIR / Serial Ports Channels IR RX Port ChannelsCTON IR/Serial SendCommands ContProgramming CTOFSENDCOMMAND DEV, GET MODE IR/Serial SendCommands ContSets the time between power SENDCOMMAND DEV, PTOF,Time IR/Serial SendCommands ContIR/Serial SendCommands Cont GET INPUT Input/Output SendCommandsI/O SENDCOMMANDS ProgrammingNetLinx Integrated Controllers ProgrammingSymptom TroubleshootingTroubleshooting Information TroubleshootingSolution Troubleshooting Information ContTroubleshooting SymptomDuring the firmware upgrade Troubleshooting Information ContSymptom SolutionRevisionLast12/10/04