Table of Contents
Advertisement
86
Login Limitations
Single Loging Limitation
If this option is enabled, the user can access the ARMC/3P only from one IP
adress with one connection. It is not possible to access the ARMC/3P from
different IP addresses or web browsers with the same login at the same time.
You have to be logged out or the session has to be timed out to get a new
connection on a different IP address on the ARMC/3P with this login.
Password Aging
If this option is enabled after a defined interval a reminder will request a new
password for the user. The set interval displays how many days the password
is active.
The ARMC/3P uses the Secure Socket Layer (SSL) protocol for any encrypted net-
work traffic between itself and a connected client. During the connection establish-
ment the ARMC/3P has to expose its identity to a client using a cryptographic
certificate. Upon delivery this certificate and the underlying secret key is the same
for all ARMC/3P ever produced and certainly will not match the network con-
figuration that will be applied to the ARMC/3P cards by its user. The certificate's
underlying secret key is also used for securing the SSL handshake. Hence, this is
a security risk (but far better than no encryption at all).
However, it is possible to generate and install a new base64 x.509 certificate that is
unique for a particular ARMC/3P card. In order to do that, the ARMC/3P is able to
generate a new cryptographic key and the associated Certificate Signing Request
(CSR) that needs to be certified by a certification authority (CA). A certification au-
thority verifies that you are the person who you claim you are and signs and issues
a SSL certificate to you.
P
U
G
RODUCT
SER
UIDE
Hide quick links:
Advertisement
Table of Contents
