Setting the Site Security Level to Encrypted and Trusted - Metasys - LIT-12013222 - M4-OASHIST-0 - M4-OASMIN-0 - M4-OASMIN-6 - M4-OASMIN-SC3 - M4-OASMIN-SCS - M4-OASPPA-0 - M4-OASSCHRPT-0 - M4-OASSTD-0 - M4-OASSTD-6 - M4-OASSTD-SC3 - M4-OASSTD-SCS - Server - Open Application Server - 12.0

Open Application Server (OAS) Installation Guide

Product
Building Automation Systems > Application Servers > Open Application Server
Document type
Installation Guide
Document number
LIT-12013222
Version
12.0
Revision date
2022-05-20
Product status
Active

About this task

You can set the Site Security Level offline with SCT or online with the Site Management Portal UI. To use the online method to set the Site Security Level to Encrypted and Trusted, follow these steps:

Procedure

  1. Log on to the Site Management Portal of the Site Director.
  2. Open the Site View for the Site Director.
  3. With Advanced selected, click Edit.
  4. Locate the Site Security Level attribute under the Operational Data section.
  5. Click the down arrow and select Encrypted and Trusted.
    Note: When you set the Site Security Level attribute in the Site object to Encrypted and Trusted, all network engines reporting to the Site Director are modified to change their Site Security Level attribute to Encrypted and Trusted. If a network engine Site Security Level attribute is set to Encrypted and Trusted but does not have a trusted certificate, communication between the Site Director and the network engine is lost because the Site Director now requires the engine to communication with a trusted certificate. Also, if some time later you want to change a network engine's Site Security Level back to Encrypted Only, you need to log on to the network engine directly.

    Before you set the Site object Site Security Level attribute to Encrypted and Trusted, verify that all network engines reporting to the Site Director have trusted certificates. If the network engines do not have trusted certificates, keep this attribute set to Encrypted Only.

  6. Click Save. The server and engines across the entire site now use encrypted and trusted communication.
  7. As an option, use SCT to upload the Site Director so that this change is reflected in the database archive.
    If you want to later change the site to use encrypted only communication, repeat these steps but select Encrypted Only, then use SCT to upload the change to the archive.