Modifying EncrypTight Timing Parameters

For ETPM to ETKMS communications errors, check the ETEMS or ETPM application log for an error entry as described in “ETPM Log Files” on page 241.

For ETKMS to PEP communications errors, check the ETKMS log files as described in “ETKMS Log Files” on page 241.

Modifying EncrypTight Timing Parameters

Depending on the deployment, the default timing parameters for communications between EncrypTight components may need to be adjusted. These include parameters that control how long the ETPM waits for replies from the ETKMS, as well as how long the ETKMS waits for replies from the PEPs. Other timing parameters exist as well.

The amount of time that ETPM waits for a response from a ETKMS during a policy deployment can be changed by setting a value in the config.ini file. This file is located in the configuration directory inside the ETEMS installation directory. To change the value, add or edit the following line:

maxRetryWaitTime=xxx

Where xxx is the number of seconds that ETPM waits for a reply from a ETKMS. The default value is 6 minutes (360 seconds). The maxRetryWaitTime for ETPM should be set to a value at least 1 or 2 minutes longer than the value of the retryStatusCheckTime parameter on the ETKMS. This ensures that ETPM will wait for a reply from the ETKMS at least as long as the ETKMS waits for replies from the PEPs.

To set the retryStatusCheckTime parameter, edit the kdist.properties file. On an external ETKMS the file is located in the /opt/etkms/conf directory; on the local ETKMS it is located in \tools\ETKMS\bin (relative to the install directory). For information on timing parameters for a ETKMS, see “Modifying the ETKMS Properties File” on page 255.

Certificate Implementation Errors

When you use certificates for TLS communications between the ETPM and the ETKMSs and between the ETKMSs and the PEPs, you might encounter the following problems.

Cannot communicate with a PEP

Keystore password might not be correct

Certificates might not be valid yet

Certificate might be missing or uninstalled

These errors can occur when you start the ETKMS server or when ETPM first tries to communicate with the PEP.

Cannot Communicate with PEP

If you attempt to add a new PEP to the ETEMS Appliance Manager after strict authentication is enabled in the EncrypTight software, you will receive a communications error. When strict authentication is enabled, the EncrypTight software cannot communicate with appliances that do not have the appropriate certificates.

EncrypTight User Guide

249

Page 247 Page 249
Page 248
Image 248
Black Box ET1000A Modifying EncrypTight Timing Parameters, Certificate Implementation Errors, Cannot Communicate with PEP
Page 247 Page 249

EncrypTight, ET0100A, ET0010A, ET1000A specifications

The Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are advanced solutions designed for secure data transmission and network management, catering to modern enterprise needs. These tools integrate cutting-edge technologies to enhance connectivity, security, and efficiency within various environments.

The Black Box ET1000A is primarily a high-performance Ethernet over Twisted Pair (EoTP) solution. It enables users to extend Ethernet signals over long distances using existing twisted-pair cabling without sacrificing speed or reliability. With support for speeds up to 100 Mbps, this device is ideal for organizations looking to upgrade their existing infrastructure without extensive rewiring. Key features include plug-and-play installation, which simplifies deployment, and versatile compatibility with both legacy and modern ethernet networks.

The ET0010A model takes connectivity a step further by providing seamless integration with fiber optics. This device supports transmission distances that far exceed traditional copper solutions, making it a perfect fit for larger facilities or multi-building campuses. Its built-in Ethernet switch enhances network efficiency by providing multiple ports for device connectivity, thus facilitating greater data flow.

EncrypTight technology is a notable feature across these Black Box models, offering advanced encryption capabilities to safeguard sensitive data during transmission. With military-grade encryption protocols, EncrypTight ensures that corporate information remains secure from potential eavesdroppers. This technology is essential for businesses operating in regulated industries or that handle confidential customer information.

The ET0100A model combines intelligence with monitoring features to provide users with comprehensive network insights. It boasts built-in diagnostic tools that enable IT professionals to troubleshoot issues quickly and efficiently. Additionally, it features real-time performance monitoring, allowing users to analyze bandwidth usage and optimize network performance accordingly.

In conclusion, the Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are powerful tools that embody the latest in data transmission and network management technologies. With their unique features—including extended connectivity capabilities, robust encryption technologies, and real-time monitoring solutions—these devices cater to the growing demands of businesses seeking to enhance their network infrastructure while ensuring robust security and efficiency. Integrating these tools into any organization’s operations can fundamentally improve both performance and data protection, making them indispensable in today’s digital landscape.
Top Page Image Contents