Server Exporting an SSL Certificate Request | AMX NI-3101-SIG

NetLinx Security within the Web Server

Server - Exporting an SSL Certificate Request

1.First follow the procedures outlined in theServer - Creating a Request for an SSL Certificate section on page 81 to begin the process of requesting an SSL by creating a session-specific Master certificate.

2.Click the Export Certificate Request button to display the certificate text file within the Server Certificate page (FIG. 50).

Certificate text field

FIG. 50 Export SSL Certificate dialog

3.Place your cursor within the certificate text field.

4.Press the Ctrl + A keys simultaneously on your keyboard (this selects all the text within the field).

YOU MUST COPY ALL OF THE TEXT within this field, including the -----BEGIN

CERTIFICATE REQUEST----- and the -----END CERTIFICATE REQUEST-----. This

text in the CA submission must be included to receive a CA-approved certificate.

5.Press the Ctrl + C keys simultaneously on your keyboard (this takes the blue selected text within the field and copies it to your temporary memory/clipboard).

6.Paste this text into the Submit Request field on the CA’s Retrieve Certificate web page.

7.Choose to view the certificate response in raw DER format.

8.Note the Authorization Code and Reference Number (for use in the e-mail submission of the request).

9.Submit the request.

10.Paste this certificate text field (copied from steps 4 & 5 above) into your e-mail document and then send that information to a CA with its accompanying certificate application.

When a certificate request is generated, you are creating a private key on the Master.

YOU CANNOT REQUEST ANOTHER CERTIFICATE UNTIL THE PREVIOUS REQUEST HAS BEEN FULFILLED. Doing so voids any information received from the previously requested certificate and it becomes nonfunctional if attempted to be used.

84	NI-3101-SIG Signature Series NetLinx Integrated Controller

Image 90

AMX NI-3101-SIG manual Server Exporting an SSL Certificate Request, Export SSL Certificate dialog

Contents

NI-3101-SIG AMX Limited Warranty and Disclaimer Introduction NetLinx Security within the Web Server NetLinx Security with a Terminal Connection 117 Troubleshooting 167 NetLinx Integrated Master Controller Features NI-3101-SIG FG2105-08 Blue LED bar lights when powered up NI-3101-SIG SpecificationsNI-3101-SIG Specifications MB Flash RS-232/422/485 Ports 1 IR ports support data mode at limited baud rates and wiring DistancesD notation is used to represent a device number NI-3101-SIG Specifications Page Structure DEV DevicePortSystem DPSWhere Numberportsystem Installation into an Equipment Rack PRD Mode Settings Program Run Disable PRD modeWorking with the Configuration DIP switch PRD Mode Modes and Front Panel LED Blink Patterns Configuration Port Connections and WiringMode Description Blue White Modes and LED Blink Patterns AXlink Port and LED Off No power, or the controller is not functioning properlyPort Assignments and Functionality Rear Port Assignments are as follows Preparing captive wires Wiring GuidelinesWiring length guidelines Wiring Guidelines NI-3101 @ 900 mA Wiring a power connection Using the 4-pin mini-Phoenix connector for data and power GND AXP/TX AXM/RX RS-232/422/485 Device Port Wiring Specifications DB9 Device Port Connections and WiringRelay Port Connections and Wiring Pin Input/Output I/O Port Connections and Wiring Relay connectionsPort +12V 6 5 4 3 2 IR/Serial Connector Wiring Specifications per Port IR/Serial Port Connections and WiringPort Wiring Specifications NI-3101-SIG Signal Function Ethernet/RJ-45 Port Connections and Wiring Ethernet RJ-45 Pinouts and SignalsSignals Connection Pairing Color Port type Description Standard Port Ethernet ports used by the Integrated ControllersEthernet Ports Used by the NetLinx Integrated Controllers On-board Master has a built-in FTP server 21/20 TCP Replacing the Timekeeper Battery Configuration and Firmware Update Master Communication Settings dialog box Communicating with the Master via the Program Port Setting the System Value COM1 Using multiple NetLinx Masters Changing the Device Address of a NetLinx Device Device Addressing dialog changing the device value Axcess Devices use Axcess standards Using the ID Button to Change the Controller’s Device ValueRecommended NetLinx Device numbers 301 Resetting the Factory Default System and Device Values Obtaining the Master’s IP Address using Dhcp Network Addresses dialog for a Dhcp IP Address Configuration and Firmware Update Assigning a Static IP to the NetLinx Master Communications Settings dialog box Communicating with the NI Device via an IP TCP/IP Settings dialog box Master Controller User Name and Password dialog box Verifying the current version of NetLinx Master Firmware Sample NetLinx Workspace window showing OnLine Tree tab Upgrading the On-board Master Firmware via an IP Firmware Kit File usage for NI Controllers After the last component fails to install, click Done Select the NI Master’s Kit file from the Files section FIG Upgrading the NI Controller Firmware via IP Configuration and Firmware Update Configuration and Firmware Update Page NetLinx Security within the Web Server Username and profile NetLinx Security Terms NetLinx Security TermsCase sensitive Accessing an Unsecured Master via an Http Address Default Security Configuration Browser Application Frames Default Security Configuration case-sensitive Account Group Master Firmware Security Access Parameters Telnet Security Web Control Managing WebControl Connections Feature Description Compatible Devices Field Security FeaturesManage WebControl Connection Page Features Internet Security System Level Security Security FeaturesFeature Description System Level Group Level System Level Security Master must provide a valid username and password Configuration/Reset, URL list settings, MasterCommunication settings, and security parameters And/or SSH Ports. SSH version 2 is only supported Setting the system security options for a NetLinx Master Section on page 49 for more detailed field descriptions Administrator group account cannot be deleted or modified Security Group Level Security Icsp AuthenticationYou are logged in as a user with Configuration Access Manage Group Configure Group Properties IP configuration/Reset, URL list settings, MasterCommunication settings, and file transfers Adding a new Group Modifying the properties of an existing Group Deleting an existing Group Feature Description Manage Users Security User Level SecurityManage Users To this Configure User PropertiesFeature Description Configure User Properties User Security Details Adding a new User Configure Users PropertiesFeature Description User Security Details Sensitive and must be unique Click the Back button to return to the Manage User Modifying the properties of an existing User System Settings Deleting an existing User Manage System Page Components System Settings Manage SystemFeature Description Online Tree menu Online Tree This button is available from within all Management Feature Description Management menu optionsSystem menu buttons Menus Feature Description Device menu buttons Port menu buttons Manage System System Menu Buttons System Menu Modifying the Date/Time System Menu Rebooting the Master System Menu Changing the System NumberSystem Menu Controlling/Emulating Devices on the Master Select either the Control or Emulate option Control/Emulate dialog Valid Level Data Types and Ranges Minimum Value Maximum Value Manage System Diagnostics Diagnostics dialog showing modify popup Setting up and removing a Diagnostic Filter Diagnostic Configuration DialogFeature Update Remove Description Feature Description Presets New Preset. Refer to of this section for more informationSystem/Device/Port NetLinx Security within the Web Server Manage System Server Setting the Master’s Port ConfigurationsDefault port for each service is listed to the right Server Submenu Options SSH FTP Modifying the Server Port Settings Server Port SettingsIs determined by the user SSH Port FeatureDescriptionEnabled but the value can not be changed Address field of the SSH Client application SSL Server Certificate Creation Procedures Certificate consists of two different Keys From an external source Server Certificate EntriesContained in the certificate on the target Master Desired Server Display SSL Server Certificate Information Server Creating a self-generated SSL Certificate Server Regenerating an SSL Server Certificate Request Server Creating a Request for an SSL Certificate State/province name must be fully spelled out Common Steps for Requesting a Certificate from a CA Communicating with the CA Server Exporting an SSL Certificate Request Export SSL Certificate dialog Server Importing a CA created SSL Certificate Before importing a CA server certificate Device Menu Configuring the Network Settings Manage System Device Menu Buttons Network Settings Dialog Feature Description IP AddressDNS Address Device Menu Developing a URL List Click the Back button to return to the main URL List dialog Device Menu Changing the Device Number URL List dialog with entries Master section on page 67 for more information Device Menu Running a Diagnostic FilterDevice Menu Controlling or Emulating a device Device Menu Viewing the Log System Settings Manage License Adding a new license Removing a license System Settings Manage NetLinx Devices Feature Clear List Refresh List DescriptionManage NetLinx Devices Feature Description Device Listings After a period of time, unable to establish communication Manage NetLinx Devices Displaying NDP-capable devices Click the icon to collapse the particular Master’s listingManage NetLinx Devices Binding/Unbinding Explained Manage NetLinx Devices Obtaining NetLinx Device information MAC Address of the Master in FIG System Settings Manage Other Devices Manage Other Devices Feature Description Dynamic Device Discovery linksConfigure Binding Options Must always be User-Defined devices Reboot, the selection is cleared This selection is a one-time occurrence. Upon the next Deleted via the Purge Bound Modules on Reset selection What is Dynamic Device Discovery? Dynamic Device Discovery Concepts Manage Other Devices Manage Device Bindings PROGRAMNAME=DDD Configuring application-defined devicesWhat are Application Devices and their association status? Defineconstant Definetype Definevariable Manage Device Bindings NetLinx Security within the Web Server Manage Other Devices Menu Viewing Discovered Devices View Discovered Devices Module Properties displayed via a mouse-over popup dialog Switcher SDK-Class TypesAmplifier DocumentCamera SlideProjector AudioConferencer To configure a Static application interface How do I write a program that uses Dynamic Device Discovery How do I configure a Run-time installation Accessing an SSL-Enabled Master via an IP Address Security Alert and Certificate popups Certificate Import Wizard Using your NetLinx Master to control the G4 panel WebControl VNC installation and Password entry screens What to do when a Certificate Expires Connection Details dialog NetLinx Security Features NetLinx Security FeaturesUser has access to the Icsp communication functionality Setup security Access Initial Setup via a Terminal ConnectionAccessing the Security configuration options Logout Close NetLinx Security with a Terminal Connection Enabled Select to change current security optionOr Enter to return to previous menu Security Options Option 2 Display system security options for NetLinx Master CommandItems in the Security Options Menu are described below Option 3 Add user Option 4 Edit User Edit User Menu Select to change current access right Command DescriptionPassword from that point forward Edit User Menu Access Rights Menu Option 5 Delete user Option 6 Show the list of authorized users Option 7 Add GroupPress Enter to display the following Edit Group menu User1 Press Enter to return to the Edit Group menuPath Results.txt Select from the following list Administrator Group Option 8 Edit GroupOr Enter to return to previous menu Set Rights Option 9 Delete Group Option 11 Set Telnet Timeout in secondsSpecify Telnet Timeout in seconds Option 10 Show List of Authorized Groups Option 12 Display Telnet Timeout in seconds Telnet Timeout is 10 secondsOption 13 Make changes permanent by saving to flash Main Security Menu Main Security MenuMain Security menu is described below Set system security options for Group Group administrator Rights All Reset DatabaseAdministrator only function Security Options FTP Security Enabled Help menu Help Menu Options NAME,STRING SET Date NAME,COMMANDSET Icsp TCP Timeout SET DNS DPS Logging Into a Session Setup Security LogoutHelp Security Page Converting Axcess Code to NetLinx Code Master SendCommandsMaster SendCommands Clock G4WC ClockcommandsSendcommand 010,~IGNOREEXTERNALCLOCKCOMMANDS Used to determine each unique listing Master IP Local Port SendCommands Master IP Local Port SendCommandsUsing the ID Button Udpsendto DevicePortSystem DPS Configuration Port CommandsPC COM Port Communication Settings NI-2x00 Port Assignments Echo OFF Configuration Port CommandsDate Echo on GET Ethernet Mode PortMSG on or MSG OFF On DPS, NAME, Chan OFF DPS, or NameChan Ping IP Address PWD Name,CommandPulse DPS, or Name Name,String Master-to-Master systems Entering N no cancels the operationPrompts you to enter the new date for the Master Rent Java memory heap size as measured in Megabytes. This Subnet Mask, and Gateway IP Address Enter Y yes to approve/store the information into the Master Set queue size Use caution when adjusting these valuesSET Queue Size Set Queue Size Menu SET UPD BC Rate Displays a list of any combined devices Example Show BuffersEach queue Example Displays a list of all devices present on the bus Example Master logs all internal messages and keeps the most recent Show LOGDisplays the log of messages stored in the Masters memory If end is not entered, the last 20 messages will be shown Show MAX Buffers Lists all active TCP/IP connections Example Show SystemSystems listed are in numerical order Example Displays the current time on the Master Example Linux Telnet client ESC Pass CodesWindowsTM client programs Escape Pass Codes RS232/422/485 Ports Channels LED Disable/Enable SendCommandsLED SendCommands RS232/422/485 ports are Ports RS-232/422/485 SendCommands RS-232/422/485 SendCommandsThese examples DEV = device Hson GET BaudHsoff Rxclr Txclr SET BaudTset Baud Xoff RS-232/422/485 SendString Escape Sequences RS-232/422/485 SendString Escape SequencesXON IR / Serial Ports Channels Command Description 27,20,1IR / Serial Ports Channels Sendstring DEV,27,20,1 Caroff IR/Serial SendCommandsIR/Serial SendCommands Caron Cton GET ModeCtof Iroff POD POFPON Meters for the IR Ports PtofPton SET IO Link Sendcommand IR1, SP,25 SET ModeSendcommand IR1,SET Mode IR Short cable length 10 feet Sendcommand IR1,XCH Sendcommand DEV,XCHM extended channel modeSendcommand IR1,XCHM Xchm GET Input Input/Output SendCommandsSendCommands SET Input Troubleshooting Information TCP/IP Page It’s Your World Take Control