Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
en:how_to_configure_secure_communication_between_device_and_server_tls_ssl [2019/09/17 20:48] kate [Configuration] |
en:how_to_configure_secure_communication_between_device_and_server_tls_ssl [2022/07/25 14:33] (current) jhlee2 [Configuration] |
||
---|---|---|---|
Line 7: | Line 7: | ||
{{:en:2x_sc_secure_communication_ssl_tls_01.png?nolink&400|}} \\ | {{:en:2x_sc_secure_communication_ssl_tls_01.png?nolink&400|}} \\ | ||
- | ((icon designed by Madebyoliver from Flaticon)) \\ | ||
- | |||
\\ | \\ | ||
- | This security is achieved by storing a digital certificate in the device. \\ | + | This security option is achieved by storing a digital certificate in the device. \\ |
When the device connects to the server, it will exchange an encryption key (session key) using the digital certificate to provide server identity verification. \\ | When the device connects to the server, it will exchange an encryption key (session key) using the digital certificate to provide server identity verification. \\ | ||
{{:en:2x_sc_secure_communication_ssl_tls_02.png?nolink&500|}} \\ | {{:en:2x_sc_secure_communication_ssl_tls_02.png?nolink&500|}} \\ | ||
Line 23: | Line 21: | ||
===== Configuration ===== | ===== Configuration ===== | ||
<callout type="danger" icon="true"> | <callout type="danger" icon="true"> | ||
- | Access to the devices can be limited while this feature is turned on. \\ | + | Access to devices can be limited when this feature is turned on. \\ |
It will take several minutes for the devices to reconnect to the server. \\ | It will take several minutes for the devices to reconnect to the server. \\ | ||
- | **Port 51213 should be enabled if TLS/SS: is used.** \\ | + | **Port 51213 should be enabled if TLS/SSL: is used.** \\ |
</callout> | </callout> | ||
Line 34: | Line 32: | ||
- BioStation A2 FW 1.3.0 or later \\ | - BioStation A2 FW 1.3.0 or later \\ | ||
- BioStation 2 FW 1.4.0 or later \\ | - BioStation 2 FW 1.4.0 or later \\ | ||
- | - FaceStation 2 FW 1.1.0 or later (to be released in 2018) \\ | + | - FaceStation 2 FW 1.1.0 or later \\ |
- CoreStation FW 1.0.0 or later \\ | - CoreStation FW 1.0.0 or later \\ | ||
- | - P2 FW 1.0.0 or later \\ | + | - BioEntry P2 FW 1.0.0 or later \\ |
+ | - BioLite N2 FW 1.0.0 or later \\ | ||
+ | - FaceLite FW 1.0.0 or later \\ | ||
+ | - XPass 2 FW 1.0.0 or later \\ | ||
+ | - FaceStation F2 FW 1.0.0 or later \\ | ||
+ | - X-Station 2 FW 1.0.0 or later \\ | ||
</callout> | </callout> | ||
Line 45: | Line 49: | ||
4. On the **Secure Communication with Device** tab, set **Secure communication with device** as **Use** \\ | 4. On the **Secure Communication with Device** tab, set **Secure communication with device** as **Use** \\ | ||
- | If you want to use a external certificate from a CA (certificate authority) such as VeriSign, Comodo, GoDaddy and etc, check **Use external certificates **and **Upload** the file. \\ | + | If you want to use an external certificate from a CA (certificate authority) such as VeriSign, Comodo, GoDaddy and etc., check **Use external certificates **and **Upload** the file. \\ |
{{:en:2x_sc_secure_communication_ssl_tls_03.png?nolink&850|}} \\ | {{:en:2x_sc_secure_communication_ssl_tls_03.png?nolink&850|}} \\ | ||
Line 53: | Line 57: | ||
**Caution** \\ | **Caution** \\ | ||
Do not turn off the secure communication option if the device is physically disconnected from the network while using the secure communication feature. \\ | Do not turn off the secure communication option if the device is physically disconnected from the network while using the secure communication feature. \\ | ||
- | If the feature is turned off, the certificate of BioStar 2 will be deleted and the device will not be able to connect to the server again. \\ | + | If the feature is turned off, the certificate of your BioStar 2 will be deleted and the device will not be able to connect to the server again. \\ |
To connect the device to the server again, the certificate saved in the device must be deleted or the device must be reset to factory default. \\ | To connect the device to the server again, the certificate saved in the device must be deleted or the device must be reset to factory default. \\ | ||
- | For devices without LCD such as W2 or P2 you can factory default the device with the reset buttons as shown in the device manual. \\ | + | For devices without LCD, such as W2 or P2, you can factory default the device with the reset buttons as shown in the device manual. \\ |
Refer to the FAQ article: [[http://support.supremainc.com/solution/articles/24000014900--both-biostar-network-and-factory-default-w2|Factory Default W2 / P2]] | Refer to the FAQ article: [[http://support.supremainc.com/solution/articles/24000014900--both-biostar-network-and-factory-default-w2|Factory Default W2 / P2]] | ||
</callout> | </callout> | ||