EasyManuals Logo
Home>AMX>Controller>NX-1200

AMX NX-1200 User Manual

AMX NX-1200
145 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #135 background imageLoading...
Page #135 background image
Appendix B: Certificates
135
NX-Series Controllers - WebConsole & Programming Guide
Creating an HTTPS KeyStore
Java Keytool is a key and certificate management utility provided by the Java SDK. Java Keytool allows users to manage their own
public and private key pairs and certificates and to cache certificates. Java Keytool stores the keys and certificates in a KeyStore.
By default, the Java KeyStore is implemented as a f ile. To create an HTTPS KeyStore, you are required to install Java SDK on the host
system. You do not create certificates on the NX Master. Certificates are created on a PC then transferred to an NX Master via
NetLinx Studio. The KeyStore must be a .jks file.
The following steps are required to create an HTTPS KeyStore.
Step 1: Create the private key
Use the following commands to create the private key:
keytool -genkeypair -keyalg RSA \
-validity 365 -keystore amxcert -keysize 2048 \
-storepass amxcertpassword -keypass amxcertpassword \
-dname CN=<hostname>,OU=Harman,O=Amx,L=Richardson,S=Tx,C=US
NOTE: The CN can be any desired name. Naming conventions likely vary from site to site.
IMPORTANT: The storepass and keypass values are f ixed and should not be changed. The passwords must be "amxcertpassword".
Step 2: Generate a CSR request
Use the following command to generate a CSR request:
keytool -certreq -keystore amxcert -file master.csr -storepass amxcertpassword
Step 3: Send the master.csr f ile to the CA to have it signed.
IMPORTANT: Typically, this step is performed by the CA service. Normally, you will NOT perform this step unless you acting as the CA.
This process will vary with each registrar. If signing locally, the command should look similar to the following line:
openssl x509 -req -in master.csr -CA CA.crt -CAkey CA.key -CAserial ./CA.srl -out master.crt -days 10240
Step 4: Import the newly signed certificate into the KeyStore
Use the following commands to import the newly signed certificate into the KeyStore:
keytool -keystore amxcert -alias CA -import -file CA.crt -trustcacerts
keytool -keystore amxcert -import -file master.crt -trustcacerts
Step 5: Upload amxcert to the NX as HTTPS KeyStore and reboot the NX
When connecting to HTTPS, the certificate information should reflect the new certificate information.

Table of Contents

Other manuals for AMX NX-1200

Preview: Hardware Reference Manual
Hardware Reference Manual43 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the AMX NX-1200 and is the answer not in the manual?

AMX NX-1200 Specifications

General IconGeneral
BrandAMX
ModelNX-1200
CategoryController
LanguageEnglish

Related product manuals