9 LTOS7 Management and Monitoring
9.1.4.2 HTTPS Certificate
HTTPS is a standard for encrypted transmission of data between web browser and web server. It relies on X.509
certificates and asymmetric crypto procedures. The timeserver uses these certificates to authenticate itself to a
client (web browser). The first time a web browser connects to the HTTPS web server of your LANTIME, you
are asked to accept the certificate of the web server.
To make sure that you are talking to your known timeserver, check the certificate and accept it, if it matches the
one stored on the LANTIME. All further connections are comparing the certificate with this one, which is saved
in your web browser configuration. Afterwards you are prompted to verify the certificate only when it is changed.
Note:
Per default there is a self-signed certificate installed on the LANTIME which is not signed by a Cer-
tificate Authority (CA). Therefore some web browsers will state that the connection is not secure. If you want
to install a certificate which was signed by a trusted Certificate Authority the “Upload SSL Certificate” button
can be used. More details on this in the following instructions.
Generate SSL Certificate:
Allows to create a new self-signed SSL certificate.
Show SSL Certificate:
Review the currently installed SSL certificate.
Download SSL Certificate:
Allows to download the currently installed SSL certificate.
Optional Passphrase
If your private key uploaded with the certificate is protected with a passphrase, you must enter the "passphrase"
here. Otherwise the webserver cannot start automatically because it cannot decrypt the uploaded private key.
Upload SSL Certificate:
Allows to upload a certificate which was signed by a trusted Certificate Authority. This certificate must be in
PEM file format.
LANTIME CPU Expansion Shelf
Date: 2nd July 2020
65
Summary of Contents for LCES
Page 2: ......