About Strict Authentication

Related topics:

“Prerequisites” on page 263

“Order of Operations” on page 263

“Certificate Information” on page 264

“Changing the EncrypTight Keystore Password” on page 266

“Configuring the Certificate Policies Extension” on page 269

“Validating Certificates” on page 287

“Enabling and Disabling Strict Authentication” on page 292

Prerequisites

An important prerequisite to installing new certificates is identifying the certificate authority you plan to use. Your organization may have a standard CA that everyone uses, or you may need to select one for this particular security application. The information in this chapter assumes that you have established a relationship with a certificate authority.

In order to follow the procedures discussed in this section and work with certificates in an EncrypTight system, you need to understand how to do several tasks covered in more detail in other sections. Cross references to those sections are provided in Table 67.

Table 67 Prerequisites for Using Certificates with EncrypTight

How to:

Reference:

Navigate and work with ETEMS

“Getting Started with ETEMS” on page 83

Add and configure PEPs

“Provisioning Appliances” on page 95

Access the command line interface on the

“Logging Into the ETKMS” on page 47

ETKMS

 

Access the command line interface for a PEP

See the configuration chapter for the model of

 

PEP that you are using.

 

 

NOTE

If you plan to operate in FIPS mode, make sure you enable FIPS mode first and push the configuration to the ETEPs before you begin to install certificates and set up strict authentication. If you enable FIPS mode after strict authentication has been activated, you will need to reinstall your certificates.

Order of Operations

You should proceed with caution as you enable strict authentication in your deployment. Among the issues you could encounter are invalid, misconfigured, or expired certificates that cause communication failures. The following order of operations is recommended:

1If you plan to operate in FIPS mode, enable FIPS mode on your ETEPs before you make other changes.

2Change the keystore password for the EncrypTight software and the ETKMSs.

3Install certificates and keys on the management workstation and a few PEPs.

EncrypTight User Guide

263

Page 261 Page 263
Page 262
Image 262
Black Box ET1000A Order of Operations, Prerequisites for Using Certificates with EncrypTight, How to Reference
Page 261 Page 263

EncrypTight, ET0100A, ET0010A, ET1000A specifications

The Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are advanced solutions designed for secure data transmission and network management, catering to modern enterprise needs. These tools integrate cutting-edge technologies to enhance connectivity, security, and efficiency within various environments.

The Black Box ET1000A is primarily a high-performance Ethernet over Twisted Pair (EoTP) solution. It enables users to extend Ethernet signals over long distances using existing twisted-pair cabling without sacrificing speed or reliability. With support for speeds up to 100 Mbps, this device is ideal for organizations looking to upgrade their existing infrastructure without extensive rewiring. Key features include plug-and-play installation, which simplifies deployment, and versatile compatibility with both legacy and modern ethernet networks.

The ET0010A model takes connectivity a step further by providing seamless integration with fiber optics. This device supports transmission distances that far exceed traditional copper solutions, making it a perfect fit for larger facilities or multi-building campuses. Its built-in Ethernet switch enhances network efficiency by providing multiple ports for device connectivity, thus facilitating greater data flow.

EncrypTight technology is a notable feature across these Black Box models, offering advanced encryption capabilities to safeguard sensitive data during transmission. With military-grade encryption protocols, EncrypTight ensures that corporate information remains secure from potential eavesdroppers. This technology is essential for businesses operating in regulated industries or that handle confidential customer information.

The ET0100A model combines intelligence with monitoring features to provide users with comprehensive network insights. It boasts built-in diagnostic tools that enable IT professionals to troubleshoot issues quickly and efficiently. Additionally, it features real-time performance monitoring, allowing users to analyze bandwidth usage and optimize network performance accordingly.

In conclusion, the Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are powerful tools that embody the latest in data transmission and network management technologies. With their unique features—including extended connectivity capabilities, robust encryption technologies, and real-time monitoring solutions—these devices cater to the growing demands of businesses seeking to enhance their network infrastructure while ensuring robust security and efficiency. Integrating these tools into any organization’s operations can fundamentally improve both performance and data protection, making them indispensable in today’s digital landscape.
Top Page Image Contents