Import SSL Certificate dialog | AMX NI-3101-SIG manual

NetLinx Security within the Web Server

2.Navigate to the Server Certificate page by clicking System Settings > Manage System > Server > Import SSL Certificate to open the Import Certificate page (FIG. 53).

Certificate text field

FIG. 53 Import SSL Certificate dialog

3.Place the cursor within the empty window and paste the raw text data (in its entirety) into the field.

4.Click the Update button to enter the new encrypted certificate information and save it to the Master.

Once a certificate has been purchased from an external CA and then installed onto a specific Master, DO NOT regenerate the certificate or alter its properties (example: bit length, city, etc.). If the purchased certificate is regenerated, it becomes invalid.

A certificate consists of two different Keys:

Master Key is generated by the Master and is incorporated into the text string sent to the CA during a certificate request. It is specific to a particular request made on a specific Master.

Public Key is part of the text string that is returned from the CA as part of an approved SSL Server Certificate. This public key is based off the submitted Master key from the original request.

Regenerating a previously requested and installed certificate invalidates the previously purchased certificate because the Master Key has been changed.

5.Use the Server > Create SSL Certificate > Display Certificate option to confirm that the new certificate was imported properly to the target Master.

A CA server certificate can only be imported to a target Master only after both a self-generated certificate has been created and the SSL Enable feature has been selected on the Master. These actions configure the Master to the secure communication necessary during the importing of the CA certificate.

70	NI-3101-SIG Signature Series NetLinx Integrated Controller

Image 80

AMX NI-3101-SIG manual Import SSL Certificate dialog

Contents

NI-3101-SIG AMX Limited Warranty and Disclaimer AMX Software License and Warranty Agreement Page Table of Contents NetLinx Security within the Web Server NetLinx Security with a Terminal Connection Programming 115 Troubleshooting 143 Page NetLinx Integrated Master Controller Features Introduction Front Panel Components NI-3101-SIG SpecificationsNI-3101-SIG Specifications Rear Panel Connectors Changing the Device Address of a NetLinx Device section on D notation is used to represent a device number Installation into an Equipment Rack DevicePortSystem DPSNumber Port Installation and Upgrading Configuration Port Connections and Wiring Program Run Disable PRD modeWorking with the Configuration DIP switch PRD Mode Settings Modes and Front Panel LED Blink Patterns Port Assignments and FunctionalityAXlink Port and LED Modes and LED Blink Patterns Wiring Guidelines Wiring length guidelinesPreparing captive wires Wiring a power connection Using the 4-pin mini-Phoenix connector for data and power Pin mini-Phoenix connector wiring diagram direct power DB9 Device Port Connections and Wiring Relay Port Connections and WiringRS-232/422/485 Device Port Wiring Specifications Pin Signal Function RS-232 RS-422 RS-485 Input/Output I/O Port Connections and Wiring IR/Serial Port Connections and WiringPort Wiring Specifications NI-3101-SIG Function Pin LAN Ethernet/RJ-45 Port Connections and Wiring IR/Serial Connector Wiring Specifications per PortLAN RJ-45 Pinouts and Signals Connections Pairing Replacing the Timekeeper Battery LAN LEDsLAN ports used by the Integrated Controllers LAN Ports Used by the NetLinx Integrated Controllers Connections and Wiring Page Overview Communicating with the Master via the Program Port Setting the System Value Select Diagnostics Device Addressing from the Main menu Device Addressing tab changing the system value Using Multiple NetLinx Masters Changing the Device Address of a NetLinx Device Axcess Devices use Axcess standards Using the ID Button to Change the Controller’s Device ValueRecommended NetLinx Device Numbers Resetting the Factory Default System and Device Values Example Previous DS=50011 Obtaining the Master’s IP Address using Dhcp Network Addresses dialog for a Dhcp IP Address Assigning a Static IP to the NetLinx Master Configuration and Firmware Update Communications Settings dialog Communicating with the NI Device via an IP TCP/IP Settings dialog Verifying the current version of NetLinx Master Firmware Ex 050001 NI-700 Upgrading the On-board Master Firmware via an IP Firmware Kit File usage for NI Controllers The Device number is always 0 for the NI Master Upgrading the NI Controller Firmware via IP Configuration and Firmware Update NetLinx Security within the Web Server Accessing an Unsecured Master via an Http Address NetLinx Security TermsNetLinx Security Terms Members of that group Default Security Configuration Browser Application Frames Default Security Configuration case-sensitive Log In/Log Out fields Managing WebControl Connections Master Firmware Security Access ParametersWeb Control Feature Description Security FeaturesManage WebControl Connection Page Features Security Features Accessible by a particular userSecurity System Level Security Communication rights, and defining the files/directories Connector System Level Security Port. Refer to theSetting the Master’s Port If not already logged Setting the system security options for a NetLinx Master Port Communication Settings Icsp Authentication Secondary window where a user can modify the rights for Security Group Level SecurityManage Group Either the new or existing group Configure Group Properties Deleting an existing Group Adding a new GroupModifying the properties of an existing Group Properties Security User Level SecurityManage Users Configure User Properties Case sensitive and must be unique Configure Users PropertiesAdding a new User Modifying the properties of an existing User Deleting an existing User System Settings System Settings Manage System Refreshing/Rebooting the Master updates this Online Tree Manage System Page ComponentsEach Parent device, which may require their own firmware Master System Menu Changing the System Number Manage System System Menu ButtonsSystem Menu Modifying the Date/Time System Menu Rebooting the Master System Menu Controlling/Emulating Devices on the Master Select either the Control or Emulate option Manage System Diagnostics Valid Level Data Types and Ranges Setting up and removing a Diagnostic Filter Diagnostics dialog showing modify popup Diagnostic Configuration Dialog Feature Description UpdatePresets Remove Feature Description Server Submenu Options Setting the Master’s Port ConfigurationsManage System Server Modifying the Server Port Settings Server Port Settings Address field for communication Port valueWould be http//192.192.192.19299 Done over a more secure Https connection SSL Server Certificate Creation Procedures Create an SSL Certificate dialog Feature Description Server Certificate Field Information Server Certificate Entries Server Display SSL Server Certificate Information Server Creating a self-generated SSL Certificate Server Regenerating an SSL Server Certificate Request Server Creating a Request for an SSL Certificate Server Exporting an SSL Certificate Request Common Steps for Requesting a Certificate from a CACommunicating with the CA Server Importing a CA created SSL Certificate Export SSL Certificate dialog Import SSL Certificate dialog Manage System Device Menu Buttons Device Menu Configuring the LAN SettingsNetwork Settings Dialog Device Menu Developing a URL List URL List dialog Device Menu Changing the Device Number URL List dialog with entries System Settings Manage License Device Menu Running a Diagnostic FilterDevice Menu Controlling or Emulating a device Device Menu Viewing the Log System Settings Manage License Adding a new license Manage NetLinx Devices System Settings Manage NetLinx DevicesRemoving a license Device Listings First entry lists those NetLinx Masters which have sent outNetLinx Discovery Master Announce packets NDPs Each entry contains the data necessary to describe Manage NetLinx Devices Displaying NDP-capable devices Manage NetLinx Devices Binding/Unbinding Explained Manage NetLinx Devices Obtaining NetLinx Device information Master in FIG Manage Other Devices MasterDynamic Devices provided to the Master via the NetLinx Always be User-Defined devices Administrator the capability of removing existing modules Save SettingsAfter confirming the presence of those previously coded Dynamic Devices within the Manage Device Bindings Internet either AMXs site or a device specified site for a PC/LAN What is Dynamic Device Discovery? Dynamic Device Discovery Concepts Dddp Be polled for devices Configuring application-defined devices Manage Other Devices Manage Device Bindings Manage Device Bindings What are Application Devices and their association status? Manage Other Devices Menu Viewing Discovered Devices View Discovered Devices Manage Other Devices Menu Creating a new User-Defined Device How do I write a program that uses Dynamic Device Discovery SDK-Class TypesHvac VCR How do I configure a Run-time installation Accessing an SSL-Enabled Master via an IP Address Security Alert and Certificate popups Certificate Import Wizard Using your NetLinx Master to control the G4 panel WebControl VNC installation and Password entry screens What to do when a Certificate Expires Page NetLinx Security Features Initial Setup via a Terminal ConnectionNetLinx Security Features User has access to the Icsp communication functionality Accessing the Security configuration options Communications Select to change current security option Security Options Menu Command DescriptionOption 2 Display system security options for NetLinx Master New password from that point forward Option 3 Add userOption 4 Edit User Edit User Menu Access Rights Menu Access Rights Menu Option 5 Delete user Option 6 Show the list of authorized usersOption 7 Add Group Edit Group Menu Edit Group menu Delete directory association Path Edit Group menu Change Access Rights Edit Group menu Display Access RightsEdit Group menu List directory associations Option 8 Edit Group Option 11 Set Telnet Timeout in seconds Option 12 Display Telnet Timeout in secondsOption 9 Delete Group Option 10 Show List of Authorized Groups Main Security Menu CommandMain Security Menu When changes are made to the security settings Selection saved the current security settings into flashNent, you will be prompted to save the settings at that These functions are only visible to administrators. If a Help Menu Options CommandDescriptionHelp menu Size via a NetLinx program, the program command Help Security Logging Into a SessionLogout Setup Security Converting Axcess Code to NetLinx Code Master SendCommandsMaster SendCommands ~IGNOREEXTERNAL ClockcommandsG4WC Master IP Local Port SendCommands Master IP Local Port SendCommandsUsing the ID Button Configuration Port Commands DevicePortSystem DPS Holdoff command reveals whether the state is On or Off Disables terminal characters echo display functionEnables terminal characters echo display function Device Holdoff Onoff command Displays the current LAN configuration setting Displays the related security commandsMaster. MSG OFF disables the display Extended diagnostic information messages turned on ONname,channel ONDPS,channelTo exit pass mode, type + + esc esc. Refer to the ESC Pass Codes section on page 131 for more information Reboots the Master or specified device Releases the Dhcp setting for the MasterMaster must be rebooted to acquire a new Dhcp lease Sets the Master-to-Master route mode Via a NetLinx program, the program command DUETMEMSIZESETint should call Reboot following a set Subnet Mask, and Gateway IP Address Enter Y yes to approve/store the information into the Master Use caution when adjusting these values Interpreter factory default=2000, currently=600Notification Manager factory default=2000, currently=200 Connection Manager factory default=2000, currently=500 Entering N no cancels the operation Example Prompts you to enter the new time for the MasterMaster-to-Master systems Example Frequency to be changed or eliminate the broadcast message Displays a list of all devices present on the bus Example Each queue ExampleDisplays a list of any combined devices Example Displays the log of messages stored in the Masters memory Master logs all internal messages and keeps the most recentIf end is not entered, the last 20 messages will be shown Most recent Message buffers that were ever present on the queue See Show BuffersNumber is Example Desired from what device. Note the local system number is Displays the current time on the Master Example Systems listed are in numerical order ExampleLists all active TCP/IP connections Example ESC Pass Codes WindowsTM client programsLinux Telnet client Escape Pass Codes RS232/422/485 Ports Channels LED Disable/Enable SendCommandsRS-232/422/485 SendCommands Chard ChardmCtspsh Ctspsh OFF Rxoff RxonSET Baud Tset Baud RS-232/422/485 SendString Escape Sequences RS-232/422/485 SendString Escape SequencesXoff XON IR/Serial SendCommands IR/Serial SendCommandsIR / Serial Ports Channels IR / Serial Ports Channels Ctof Cton GET Mode Port 4 IR,CARRIER,IO LinkIroff POD PON PtofPton Meters for the IR Ports SET Mode SET IO LinkShort cable length 10 feet XCH Xchm Input/Output SendCommands SendCommandsGET Input SET Input Troubleshooting Information Symptom SolutionRefer to the Configuration and Firmware Update section on For more information LAN Refer to the Upgrading the On-board Master Firmware via anPage It’s Your World Take Control