Certificates; Generating A Root Ca Certificate - Honeywell MX9 User Manual

Certificates

Note: Refer to the Security Primer (available at www.honeywellaidc.com) to prepare the Authentication Server and Access Point
for communication.
Note: It is important that all dates are correct on the MX9 and host computers when using any type of certificate. Certificates are
date sensitive and if the date is not correct authentication will fail.
Root Certificates are necessary for EAP-TLS, PEAP/GTC and PEAP/MSCHAP.
1. See

Generating a Root CA Certificate

2. Connect the MX9 to the desktop PC using ActiveSync and copy the certificate to the MX9 \System folder.
3. See Installing a Root CA Certificate
User Certificates are necessary for EAP-TLS.
1. See Generating a User Certificate
2. Connect the MX9 to the desktop PC using ActiveSync and copy the certificate and private key file to the MX9 \System folder.
3. See Installing a User Certificate
4. After installation, perform a Warmboot.
5. Verify Installation (page 10-47).
Generating a Root CA Certificate
Note: It is important that all dates are correct on the MX9 and host computers when using any type of certificate. Certificates
are date sensitive and if the date is not correct authentication will fail.
The easiest way to get the root CA certificate is to use a browser on a PC to navigate to the Certificate Authority.
1. To request the root CA certificate, open a browser to http://<CA IP address>/certsrv.
2. Sign into the CA with any valid username and password.
10 - 34
(page 10-34) and download the Root CA Certificate to a PC.
(page 10-37) and install the Root CA Certificate.
(page 10-38) and download the User Certificate and Private Key file to a PC.
(page 10-44) and install the User Certificate and Private Key file.