Raloy IP Functions for KVM Bedienungsanleitung PDF herunterladen (Seite 29)

3-4.4 Certicate

The IP module uses the Secure Socket Layer (SSL) protocol for any encrypted network trafc between itself

and a connected client. During the connection establishment the IP module has to expose its identity to a

client using a cryptographic certicate. The default certicate comes with IP MODULE device upon delivery

is for testing purpose only. System administrator should not rely on this default certicate as the secured

global access mechanism through Internet.

However, it is possible to generate and install a new base64 X.509 certicate that is unique for a particular

IP module. In order to do that, the IP module is able to generate a new cryptographic key and the

associated Certicate Signing Request (CSR) that needs to be certied by a certication authority (CA). A

certication authority veries that you are the person who you claim you are, and signs and issues a SSL

certicate to you.

The following steps are necessary to create and install a SSL certicate for the IP

module:

■ Create a SSL Certicate Signing Request using the panel shown below. You need to ll out a number

of elds that are explained below. Once this is done, click on the button “Create” which will initiate the

Certicate Signing Request generation. The CSR can be downloaded to your administration machine

with the “Download CSR” button.

■ Send the saved CSR string to a CA for certication. You will get the new certicate from the CA after a

more or less complicated traditional authentication process (depending on the CA).

■ Upload the certicate to the IP module using the “Upload” button as shown below.

1 2 ... 24 25 26 27 28 29 30 31 32 33 34 ... 43 44

Keine Kommentare

Raloy IP Functions for KVM Bedienungsanleitung Seite 29