Certificates; Generating A Root Ca Certificate - Honeywell HX3 User Manual

Certificates

Note: Refer to the Security Primer (available on the Honeywell web site) to prepare the Authentication Server and Access Point
for communication.
Note: It is important that all dates are correct on the HX3 and host computers when using any type of certificate. Certificates
are date sensitive and if the date is not correct authentication will fail.
Root Certificates are necessary for EAP-TLS, PEAP/GTC and PEAP/MSCHAP.
1. See

Generating a Root CA Certificate

2. Connect the HX3 to the a host computer using ActiveSync and copy the certificate to the HX3 \System folder.
3. Install the Root CA Certificate, see
4. User Certificates are necessary for EAP-TLS.
1. See Generating a User Certificate
2. Connect the HX3 to the host computer using ActiveSync and copy the certificate and private key file to the HX3 \System
folder.
3. See Installing a User Certificate
4. After installation, perform a Suspend/Resume.
5. Verify Installation (page 9-44).
Generating a Root CA Certificate
Note: It is important that all dates are correct on the HX3 and host computers when using any type of certificate. Certificates
are date sensitive and if the date is not correct authentication will fail.
The easiest way to get the root CA certificate is to use a browser on a PC to navigate to the Certificate Authority.
1. To request the root CA certificate, open a browser to http://<CA IP address>/certsrv.
2. Sign into the CA with any valid username and password.
9 - 32
(page 9-32) and download the certificate to a host computer.
Installing a Root CA Certificate
(page 9-36) and download the User Certificate and Private Key file to a host computer.
(page 9-41) and install the User Certificate and Private Key file.
(page 9-35).