Your building control system utilises secure certificate based communications, to utilise this fully it is recommended that you establish a trust relationship between the server and the client. How this trust relationship is established is dependent on the certificate which you have chosen to use:
- Purchased certificate from an accredited certificate authority. Install the certificate according to the instructions provided by the issuer.
- Certificate issued from the local IT department. Install the certificate as per instructions provided by the IT department.
- Utilise the pre-installed certificate provided by Honeywell, in this case each client must have its trusted root certificate store updated with the servers public certificate. This can be deployed to each client by;
- Group policy enforcement across a domain, refer to Microsoft instructions for information on managing trusted root certificates in a domain.
- Manually installing for each client, follow the steps below to distribute the pre-installed certificate.
To manually install the pre-installed certificate to a client
Note: This procedure is for Windows platforms only, for other devices you can use the public certificate and install according to the instructions for your specific device.
- Right-click here and choose Save Target As to save the certificate to your disk.
- Open a Command Prompt window using the Run as administrator option.
- Change the directory to the location where the certificate was saved.
- Copy and paste the following command:
certutil -addstore -f root HttpsCACertificate.cer - The certificate has now been installed in the trusted root certificate store for the computer. To confirm correct installation, close and reopen Internet Explorer and navigate to this server, there should be no certificate error.
Note: If the server name is changed this procedure must be repeated.