Ssl Certificate Options - AMX NI-700 Webconsole & Programming Manual

Server Port Settings (Cont.)
Feature
ICSP:
HTTP:
HTTPS/SSL:
SSH:
FTP:
Once any of the server port settings have been modified, press the Accept button to save these changes to the Master. Once these
changes are saved, the following message appears: "Unit must be rebooted for the change to take effect". Click the Reboot button
(from the top of the page) to remotely reboot the target Master. No dialog appears while using this button. The Device Tree then
reads "Rebooting....". After a few seconds, the Device Tree refreshes with the current system information (indicating updated port
numbers).
NOTE: If the Device Tree contents do not refresh within a few minutes, press the browser's Refresh button and reconnect to the
Master.
SSL Certif icate Options
There are three SSL Certificate options, presented as links along the bottom of this page:
SSL Certif icate Options
Create SSL Certificate:
Export SSL Certificate Request: Takes the user to the Server Certificate page where they can view a previously created certificate.
Import SSL Certificate:
NetLinx Integrated Controllers (Firmware v4)- WebConsole & Programming Guide
Description
The port value used for ICSP data communication among the different AMX software and hardware products. This type of
communication is used by the various AMX product for communication amongst themselves. Some examples would be:
NetLinx Studio communicating with a Master (for firmware or file information updates) and TPDesign4 communicating
with a touch panel (for panel page and firmware updates).
• The default port value is 1319.
Note: To further ensure a secure connection within this type of communication, a user can enable the Require Encryption
option which requires additional processor cycles. Enabling of the encryption feature is determined by the user.
The port value used for unsecure HTTP Internet communication between the web browser's UI and the target Master. By
disabling this port, the administrator (or other authorized user) can require that any consecutive sessions between the UI
and the target Master are done over a more secure HTTPS connection.
By default, the Master does not have security enabled and must be communicated with using http:// in the Address field.
• The default port value is 80.
Note: One method of adding security to HTTP communication is to change the Port value. If the port value is changed, any
consecutive session to the target Master has to add the port value at the end of the address (within the Address f ield). An
example is if the port were changed to 99, the new address information would be: http://192.192.192.192:99.
The port value used by web browser to securely communicate between the web server UI and the target Master. This port
is also used to simultaneously encrypt this data using the SSL certificate information on the Master as a key.
This port is used not only used to communicate securely between the browser (using the web server UI) and the Master
using HTTPS but also provide a port for use by the SSL encryption key (embedded into the certificate). Whereas SSL
creates a secure connection between a client and a server, over which any amount of data can be sent securely, HTTPS is
designed to transmit individual messages securely. Therefore both HTTPS and SSL can be seen as complementary and are
configured to communicate over the same port on the Master. These two methods of security and encryption are
occurring simultaneously over this port as data is being transferred.
• The default port value is 443.
Note: Another method of adding security to HTTPS communication would be to change the port value. If the port value is
changed, any consecutive session to the target Master has to add the port value at the end of the address (within the
Address f ield). An example is if the port were changed to 99, the new address information would be: http://
192.192.192.192:99.
• The port value used for secure Telnet communication. A separate secure SSH Client would handle communication over
this port. When using a secure SSH login, the entire login session (including the transmission of passwords) is
encrypted; therefore it is secure method of preventing an external user from collecting passwords.
• SSH version 2 is supported.
• The default port value is 22.
Note: If this port's value is changed, make sure to use it within the Address f ield of the SSH Client application.
The default port value used for FTP communication = 21.
Note: This port can be disabled/enabled but the value can not be changed.
Opens the Create SSL Certificate window where you can create a self-generated SSL certificate.
Note: A self-generated certif icate has lower security than an external CA (off icially issued) generated
certif icate.
An authorized user can also copy the raw text from a generated Certificate request into their clipboard
and then send it to the CA.
Takes the user to the Import Certificate page where they can import and paste the raw text from a CA
issued Certificate.
WebConsole - System Options
52