Datacryptor Ethernet User Manual | Connecting to Datacryptor Ethernet Units |
6 Connecting to Datacryptor Ethernet Units
There are three methods of connecting to the Datacryptor Ethernet units: Element Manager, serial connection to CLI, and SNMP.
The Element Manager GUI application is used to manage and configure the Datacryptor Ethernet device(s). It connects to the Datacryptor via the 10/100 Ethernet Management port.
A serial connection can be made to the Datacryptor Ethernet to interface to a
A
Users
The Datacryptor Ethernet will encrypt everything passed to it from the host network and place it onto the public network. Because of this there is no need to create secure users for the Datacryptor Ethernet, as anyone sending information will automatically use the Datacryptor Ethernet unit.
The people who administrate and configure the Datacryptor Ethernet do need to be secure and need to be authenticated using secure methods. Certificates are loaded into the Datacryptor Ethernet units that have keys used to sign messages between the PC used for configuration and the units themselves. The AES keys used to encrypt and decrypt the data being passed between Datacryptor units are automatically generated using Diffie Hellman and the supplied Diffie Hellman parameters.
When first installing the Datacryptor, use the default password. Thales strongly recommends that the Administrator changes the password before the unit is put in service and changes from the Universal CA to their own custom CA to ensure maximum security (see the Change Password dialog section). Passwords are
IP Parameter Configuration via a Serial Connection
When shipped, a Datacryptor Ethernet device has the following port settings:
| Port |
| IP address |
|
|
|
|
|
|
| Control |
| 2.2.2.2 |
|
|
|
| ||
|
|
|
|
|
| Ethernet management |
| 255.0.0.0 |
|
|
|
|
|
|
| Network |
| 1.n.n.n |
|
|
|
|
|
|
To change the parameters follow the steps below:
Net Mask
255.0.0.0
255.255.255.255
255.0.0.0
1.Connect the Datacryptor’s
Page 25 |