Acuity Controls nLight ECLYPSE User Manual page 69

Item Description
Give this controller a label or nickname to identify it on the network. The hostname can be used in place of an IP address to
identify this controller on the network. This hostname can be used in a Web browser's address.
Hostname
A hostname may contain only the ASCII letters 'a' through 'z' (case-insensitive), the digits '0' through '9', and the hyphen ('-').
A hostname cannot start with a hyphen and must not end with a hyphen. No other symbols, punctuation characters, or white
space are permitted.
Set this to enable the standard Webserver on this controller.
HTTP When Single Sign On (SSO) is enabled, HTTP is not available.
See also
Set this to enable the secure Webserver on this controller. Connections to this sever are encrypted which helps to prevent
HTTPS
eavesdropping thereby keeping passwords secure.
TLS minimum Protocol Version:
Cipher Suite Compatibility Level:
Security
Recommended: This level provides a higher level of security but is only compatible with latest client and browser versions
(e.g., Firefox 27+, Chrome 30+, Client in Java 8).
Select the type of certificate (Internal or Custom) to be used by the ECLYPSE controller.
Certificate Mode
For HTTPS connections, a certificate must have the controller's current URL or IP address encoded into it to show to the
Common Name connecting device that the connection corresponds to the certificate. Set the controller's current IP address, hostname, or
DNS name.
For HTTPS connections, click to export the public key from the local authority that generates the internal certificate to a file
Export Authority
on your PC. You must import this certificate into all PCs that are going to connect to this controller as a trusted certificate.
Public Key
See
Displays the certificate status:
Status
Import Custom
Upload a custom certificate. You can also drag and drop a certificate file in the dotted area.
Certificate
Password The password for the imported certificate.
Click to refresh the information in the list.
Apply Click Apply to apply and save the changes.
Saving a Certificate
When the HTTPS Certification has been configured, you can save the certificate on your PC. This certificate must be dis-
tributed to all PCs that will connect to this controller. It is this certificate that allows a trusted connection to be made be-
tween the two devices.
1. Enable Certificate Mode to Internal, and set this controller's IP address or DNS name in the Common Name parame-
ter.
2. Click Export Authority Public Key to save the certificate on your PC.
3. Save the file on your PC.
4. Distribute this file to all PCs that will connect to this controller.
5. Install the certificate on the PC by double-clicking it in Microsoft Windows Explorer.
6. Click Open.
nLight ECLYPSE
FIPS 140-2 Mode.
– Select the appropriate Transport Layer Protocol (TLSv1+, TLSv1.1+, or TLSv1.2) minimum version to be used for
server authentication and secure encryption and decryption of data over the Internet.
– Legacy: This is the default value and is used only if you need to support outdated client and browser versions (e.g.,
Internet Explorer 6, Client in Java 6).
– Internal: Use a self-signed certificate that has been created automatically by the ECLYPSE controller.
– Custom: Use a custom certificate. In this case, the user must import the custom certificate into the ECLYPSE con-
troller.
Saving a Certificate.
– File not found: No certificate has been imported.
– Present: A certificate has been imported.
ECLYPSE Web Interface
69