NetLinx Security within the Web Server

The third layer of protection is an SSL Certificate (specifically identifying the target Master and using a unique key to encrypt data). SSL works by using a private key to encrypt data that's transferred over the SSL connection. By default, current Masters are shipped with a default AMX SSL certificate called sslexample.amx.com. This pre-configured certificate can be used as a road map to create a unique certificate. The Master’s SSL certificate can be either requested (from an external CA) or self-generated, and then installed/imported onto the target Master. This action adds the certificate to the trusted site certificate listing within the computer’s Internet browser.

A fourth layer of security enables the encryption of data communication amongst the various AMX hardware and software components (such as between NetLinx Studio and the Master, or TPDesign4 and the touch panel (communicating through the Master)). Refer to theSecurity Features section on page 48 for more information.

NetLinx Security Terms

The following table lists some commonly used NetLinx Security terms:

NetLinx Security Terms

User

A user is a single potential client of the NetLinx Master.

 

 

Administrator

An administrator has privileges to modify existing NetLinx Master access

 

groups, users, and their rights. The administrator can also assign NetLinx

 

communication access rights for different users or groups (ex: Telnet and

 

HTTP access) and configure the Master’s SSL server certificate.

 

 

Group

A group is a logical collection of users. Note that any properties possessed by

 

a group (ex: access rights, directory associations, etc.) are inherited by all

 

members of that group.

 

 

Username

A username is a valid character string (4 - 20 alpha-numeric characters)

 

defining the user. This string is case sensitive and each username must be

 

unique.

 

 

Group name

A group name is a valid character string (4 - 20 alpha-numeric characters)

 

defining the group. This string is case sensitive and each group name must

 

be unique.

 

 

Password

A password is a valid character string (4 - 20 alpha-numeric characters) to

 

supplement the username in defining the potential client. This string is also

 

case sensitive.

 

 

Access Rights

Each of the NetLinx Master’s features has pre-defined security procedures.

 

The access right for a particular feature determines if a user or group has

 

access to that feature by entering a valid username and password.

 

 

The maximum length of a username or password is 20 characters. The minimum length of a username or password is four characters. Characters such as # (pound)

&(ampersand) and ’ " (single and double quotes) are invalid and should not be used in usernames, group names, or passwords.

42

NI-3101-SIG Signature Series NetLinx Integrated Controller

Page 48
Image 48
AMX NI-3101-SIG manual NetLinx Security Terms, Case sensitive