By default, the Optigo BACnet Capture Tool will install a self-signed certificate, which is generally secure enough for most installations. However, for systems that require a very high level of security, it is possible to update the SSL certificate of the system to a new signed certificate generated by the customer.
Preparation
Before starting the procedure, you will need to acquire a certificate that has been signed by a Certificate Authority (CA). We do not have any specific recommendations for this, but Wikipedia has a reasonably complete list of CAs.
You will need to obtain the .crt and .key file from the signed certificate and rename them to optigo.crt and optigo.key.
Installation
-
Copy the optigo.crt and optigo.key into the capture tool's 'certs' folder.
NOTE: You must have full administrator privileges.
Windows (default)
C:\Program Files (x86)\Optigo Capture Tool\data\certs
Linux (default)
/opt/OptigoCaptureTool/data/certs/
-
Restart the OptigoCaptureTool service.
Windows
Via the 'Services' application
Linux
Via the terminal (service OptigoCaptureTool restart)
- Navigate to the captureTool (https://localhost:4000/login) and, through the browser, verify that the SSL certificate has been updated.
Troubleshooting
- Make sure that you have provided the correct .crt and .key files (i.e. they are part of a matched pair and have not expired).
- Confirm that the files have been copied to the correct location.
-
Look in the logs to determine if there was an error updating the SSL certificate.
Windows (default)
C:\Program Files (x86)\Optigo Capture Tool\data\log\node.exe-yyyy-mm-dd.log
Linux (default)
/opt/optigoCaptureTool/data/log/node.exe-yyyy-mm-dd.log
Example:
Comments
0 comments
Please sign in to leave a comment.