NetLinx Security within the Web Server

SSL Server Certificate Creation Procedures

Initially, a NetLinx Master is not equipped with any installed certificates. In order to prepare a Master for later use with CA (officially issued) server certificates, it is necessary to:

First create a self-generated certificate which is automatically installed onto the Master.

Secondly, enable the SSL feature from the Enable Security page. Enabling SSL security after the certificate has been self-generated insures that the target Master is utilizing a secure connection during the process of importing a CA server certificate over the web.

A self-generated certificate has lower security than an external CA generated certificate.

A certificate consists of two different Keys:

Master Key is generated by the Master and is incorporated into the text string sent to the CA during a certificate request. It is unique to a particular request made on a specific Master.

Public Key is part of the text string that is returned from the CA as part of an approved SSL Server Certificate. This public key is based off the submitted Master key from the original request.

Regenerating a previously requested and installed certificate invalidates that certificate because the Master Key has been changed.

1.Navigate to the Server Certificate page by clicking System Settings > Manage System > Server > Create SSL Certificate to open the Server Certificate page (FIG. 49).

Server Certificate - available actions

FIG. 49 Create an SSL Certificate dialog

78

NI-3101-SIG Signature Series NetLinx Integrated Controller

Page 84
Image 84
AMX NI-3101-SIG manual SSL Server Certificate Creation Procedures, Certificate consists of two different Keys