HYOSUNG MoneyMax MX2600SE Configuration Manual
  1. Manuals
  2. Brands
  3. HYOSUNG Manuals
  4. Cash Counter
  5. MoneyMax MX2600SE
  6. Configuration manual

HYOSUNG MoneyMax MX2600SE Configuration Manual

Ssl/tls configuration guide using dpl's hercules wireless modem
Hide thumbs

Advertisement

Table of Contents

Advertisement

Table of Contents
loading

Related Manuals for HYOSUNG MoneyMax MX2600SE

Summary of Contents for HYOSUNG MoneyMax MX2600SE

  • Page 2: Table Of Contents

    Table of Contents Purpose ..................................3 Prerequisites ................................3 Steps..................................4 ATM TCP/IP Setup ..........................4 Alternative: Static IP Configuration ......................5 Enabling SSL/TLS Properly ........................6 Installation of Root Certificate Files (rootcert.pem) ................7 SSL Host Configuration ........................10 Testing SSL .............................

  • Page 3: Purpose

    Purpose This guide instructs DPL customers on how to properly configure SSL/TLS on Hyosung ATMs using a Hercules wireless modem. This guide is based on the Hyosung MoneyMax MX2600SE – the required steps for your model may vary. The document will take you through: •...

  • Page 4: Steps

    Steps 1. ATM TCP/IP Setup Before setting up SSL/TLS, confirm you are on a TCP/IP ATM configured for DHCP or static IP as instructed below. NOTE: DHCP will enable dynamic allocation of the IP address from the Hercules modem that the ATM is plugged into.

  • Page 5: Alternative: Static Ip Configuration

    b) Enable either DHCP (preferred for newer installations) or a static IP (using information provided by the installation site or the Hercules modem being used) using the DHCP En/Disable button (and other buttons if using static). ATM Operator Menu > System Setup > Terminal IP c) Once your information has been input, press the Cancel key to save the changes.

  • Page 6: Enabling Ssl/Tls Properly

    2. Enabling SSL/TLS Properly In this section we will enable TLS 1.2 to secure the ATM against man-in-the-middle attacks on the Ethernet line and enable certificate verification to make sure the ATM is verifying the certificate chain. a) Open the TCP/IP Type screen using the path listed below, then match up the information to the image using the highlighted buttons.

  • Page 7: Installation Of Root Certificate Files (Rootcert.pem)

    3. Installation of Root Certificate Files (rootcert.pem) The rootcert.pem file is used to supplement the list of certificates already installed on your Hyosung ATM. The supplemental certificates are trusted chains used by payment processors that are not always preinstalled on ATMs. These will allow certificate validation to be enabled on the ATM for enhanced protection against logical attacks.
  • Page 8 Plug the USB drive (or SD card) into the appropriate port on your Hyosung's control board (the green USB drive in our example). The Hyosung MoneyMax MX2600SE ports are as seen below. USB is on the right when viewing the ATM from behind.
  • Page 9 c) To install the new rootcert.pem navigate to the TCP/IP Type screen using the path listed below and press the Download Cert. From USB button. NOTE: If you encounter an error at this stage, you either misnamed the rootcert.pem file or your USB drive or SD card is not 2GB or less and FAT formatted (see previous steps).

  • Page 10: Ssl Host Configuration

    4. SSL Host Configuration In this section we will configure the host addresses for SSL/TLS. Configured the address fields to tls.dplwireless.com and the port fields to 8000. DPL manages the connection from the Hercules modem through our secure network to your payment processor. Please contact our technical support department to configure the payment processor information for your Hercules modem or log in to the Hercules Portal to configure it yourself (learn...

  • Page 11: Testing Ssl

    5. Testing SSL Test that SSL is configured properly on your ATM by completing either of the steps below: • Perform a dummy transaction on the ATM • Use the Connect button on the TCP/IP screen of the Diagnostics to test the connection For the purposes of this document the Connect option of the Diagnostics mode will be used: a) Navigate to the TCP/IP screen using the path listed below and press the Connect button.

  • Page 12: Conclusion

    If you see Operation Success then congratulations, the ATM is now configured correctly. Conclusion After completing all the above steps your Hyosung ATM will be set to use SSL (TLS 1.2) on all transactions with the Hercules modem. This ensures that no third parties can listen on the line, get any usable data, terminate the SSL connection and proxy it out (MITM attack), or commit any other nefarious logical attack against outgoing data from your ATMs.

Table of Contents