• 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Web browser reports "insecure connection" when accessing netPI for the first time
#1
By default netPI system softare supports SSH/TSL secured web connections to its web GUI over a https:// access method only.

By definition a secure connection ensures reasonable protection only if a certificate identifies the server as trustworthy. Only then further ongoing transactions of the initiating browser and a server can be assumed as being protected against eavesdroppers and data theft.

For that reason a browser requests a certificate from the server (netPI) first of all for verification. This certificate contains the issuing authority verified the server's trust. A list of known authorities comes pre-installed in any browser. Once a server's certificate is returned the browser compares the certificate's authority with the known ones in the list. If it is not part the browser reports a certificate error and urges the user to confirm to continue operation since it has to assume the connection is insecure.

By default netPI contains a certificate issued by Hilscher and we are not a member of known authorities in the view of the browser. That's why a browser reports the connection as insecure and asks for user confirmation to continue. Once confirmed future connections will be established without questioning again.

Hint: The cerfiicate can be replaced by a trusted customer certificate at any time in netPI's web control panel.
You never fail until you stop trying.“, Albert Einstein (1879 - 1955)

  Reply
#2
Hi Armin,

How would I do this, I do not see an option in the control panel to upload a certificate?
  Reply
#3
Hi Phil,

there you go

   

We have running an nginx revers proxy that is centralizing all https secured accesses to netPI. Hence this is the instance that reports the certificate.

All you have to do is to exchange and upload your offical CA accredited key.pem and cert.pem file.

Thx
Armin
You never fail until you stop trying.“, Albert Einstein (1879 - 1955)

  Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Remot VPN connection from netPI to company network JG_KIT 6 2,857 July-8th-2021, 02:55 PM
Last Post: JG_KIT
  Accessing netPI web UI with REST API Armin@netPI 14 7,594 June-30th-2021, 05:06 AM
Last Post: Armin@netPI
  Accessing a modbus device connected to RTE port from Node-RED tad 10 7,808 October-2nd-2020, 07:21 AM
Last Post: Armin@netPI
  Profinet Startup Time Schranz 3 3,351 November-18th-2019, 03:22 PM
Last Post: Armin@netPI
  Launching multi-containers at a time - Docker stacks Armin@netPI 0 1,840 June-4th-2019, 04:11 PM
Last Post: Armin@netPI
  [SOLVED] Slow network connection Andi 5 3,462 May-22nd-2019, 05:16 PM
Last Post: Armin@netPI
  RTE3 Use real time ethernet as "normal" ethernet interface hannes 50 22,814 May-9th-2019, 04:28 PM
Last Post: Armin@netPI
  Modbus TCP Connection via RTE Ethernet Ports Flo_Lo 18 10,838 April-15th-2019, 09:50 PM
Last Post: Armin@netPI
  Accessing Docker daemon through remote CLI adeeljsid 2 3,390 August-30th-2018, 12:32 PM
Last Post: Armin@netPI
  NTP setup (Network time protocol) zulliger@software-natives.ch 1 2,488 February-7th-2018, 09:05 PM
Last Post: Armin@netPI

Forum Jump:


Users browsing this thread: 1 Guest(s)