Using Enhanced Security Features

4Temporarily enable strict authentication in ETEMS and make sure that you can still communicate with the PEPs (refresh status for the PEPs that you used in step 3. If the PEPs respond appropriately, continue with the next step. If you cannot communicate with the PEPs, troubleshoot and fix the problems found.

5If step 4 was successful, enable strict authentication on the PEPs that you used in step 3 and retest communications. If ETEMS can still communicate with the PEPs, then ETEMS has certificates that can be used.

At this point, you can disable strict authentication and continue to provision more of the network.

6When you have installed certificates on all of the devices in the system (including the ETKMSs and all of your PEPs), you can reenable strict authentication in ETEMS.

7Refresh status for all devices to verify that ETEMS can still communicate with all devices. If you cannot communicate with a device, it probably has an invalid or misconfigured certificate.

Fix any issues discovered and proceed.

8Enable strict authentication on all of the PEPs.

9Enable strict authentication on the ETKMSs.

NOTE

If you need to add a new PEP after you have enabled strict authentication, temporarily disable strict authentication in the ETEMS preferences first, and then add the PEP. Configure the PEP as needed. After you push the configuration, install certificates on the PEP and re-enable strict authentication in ETEMS. Refresh status to test the communications and if everything is successful, enable strict authentication on the new PEP.

Related topics:

“Prerequisites” on page 263

“Certificate Information” on page 264

“Using Certificates in an EncrypTight System” on page 265

Certificate Information

When you generate a keypair and create certificates, you must provide information that uniquely identifies the device. This information is referred to as a distinguished name and consists of the values described in Table 68. When you generate a keypair using the keytool utility, this information is specified as part of the -dnameparameter.

Table 68 Distinguished name information

Setting

Description

Common Name (CN)

A name that identifies the device or person. Length: 0-64 characters.

Organizational Unit (OU)

Name of a sub-section of the organization, such as a department or

 

division. Length: 0-64 characters.

Organization (O)

Organization or company name. Length: 0-64 characters.

Locality (L)

City, town, or geographical area where the organizational unit is

 

located. Length: 0-128 characters.

State/Province (S)

State or province where the organizational unit is located. Length: 0-

 

128 characters.

Country (C)

Two letter country abbreviation (optional).

 

 

264

EncrypTight User Guide

Page 262 Page 264
Page 263
Image 263
Black Box ET0100A, ET1000A, ET0010A manual Certificate Information, Distinguished name information, Setting Description
Page 262 Page 264

EncrypTight, ET0100A, ET0010A, ET1000A specifications

The Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are advanced solutions designed for secure data transmission and network management, catering to modern enterprise needs. These tools integrate cutting-edge technologies to enhance connectivity, security, and efficiency within various environments.

The Black Box ET1000A is primarily a high-performance Ethernet over Twisted Pair (EoTP) solution. It enables users to extend Ethernet signals over long distances using existing twisted-pair cabling without sacrificing speed or reliability. With support for speeds up to 100 Mbps, this device is ideal for organizations looking to upgrade their existing infrastructure without extensive rewiring. Key features include plug-and-play installation, which simplifies deployment, and versatile compatibility with both legacy and modern ethernet networks.

The ET0010A model takes connectivity a step further by providing seamless integration with fiber optics. This device supports transmission distances that far exceed traditional copper solutions, making it a perfect fit for larger facilities or multi-building campuses. Its built-in Ethernet switch enhances network efficiency by providing multiple ports for device connectivity, thus facilitating greater data flow.

EncrypTight technology is a notable feature across these Black Box models, offering advanced encryption capabilities to safeguard sensitive data during transmission. With military-grade encryption protocols, EncrypTight ensures that corporate information remains secure from potential eavesdroppers. This technology is essential for businesses operating in regulated industries or that handle confidential customer information.

The ET0100A model combines intelligence with monitoring features to provide users with comprehensive network insights. It boasts built-in diagnostic tools that enable IT professionals to troubleshoot issues quickly and efficiently. Additionally, it features real-time performance monitoring, allowing users to analyze bandwidth usage and optimize network performance accordingly.

In conclusion, the Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are powerful tools that embody the latest in data transmission and network management technologies. With their unique features—including extended connectivity capabilities, robust encryption technologies, and real-time monitoring solutions—these devices cater to the growing demands of businesses seeking to enhance their network infrastructure while ensuring robust security and efficiency. Integrating these tools into any organization’s operations can fundamentally improve both performance and data protection, making them indispensable in today’s digital landscape.
Top Page Image Contents