NOTES:
You must run Toolbelt as an administrator.
•
Machine certificates require a private key file, which can be encrypted.
•
Certificate File Requirements
PEM (Privacy-enhanced Electronic Mail) file types are ASCII encoded, and they are the
required format for 802.1X authentication for the TouchLink Pro control systems. DER
(Distinguished Encoding Rules) file types are binary encoded and can typically have
several file extension variations, such as .crt and .cer.
NOTE:
in DER binary format) must be converted to a PEM encoded file type (.pem) before
being used for authentication.
DER encoded certificates must be converted to PEM encoding using a third-party tool.
Contact your IT administrator for more information on required tools.
To create the 802.1X security certificate for uploading to Extron TouchLink Pro control
systems, ensure that the certificate file meets the following requirements:
It contains X.509 certificate information.
•
It contains a private key (for machine certificates only).
•
It is PEM encoded.
•
It has a file extension that is .crt or .pem
•
Its file name consists of the following types of valid characters:
•
Alphanumerical (A-Z, a-z, 0-9) characters
•
Some special characters (colon [:], underscore [_], and hyphen [-])
•
NOTE:
Private Key File Requirements
Private key files are required only when employing machine certificates. Follow these
requirements for creating a private key:
Its file name consists of the following types of valid characters:
•
Alphanumerical (A-Z, a-z, 0-9) characters
•
Some special characters (colon [:], underscore [_], and hyphen [-])
•
It has a file extension that is .key or .pem.
•
It can have optional encryption (via password or passphrase).
•
DER encoded files (files with .der, .crt, or .cer extensions that are encoded
Spaces are not permitted anywhere in the name.
TLSI 201 • Reference Material
27