Index | Prev | Next

Improvements to digest authentication

In AX-3.8. improvements were made in platform digest authentication and JACE security, as follows:
  • Platform digest credentials now use a strong, two-way AES-256 encryption technique, utilizing the unique keyring and key material file of the host (JACE).
  • Platform digest credentials were relocated to a more secure location in the registry of the host platform (e.g. JACE).
  • Any AX-3.8 JACE controller operating with factory default platform credentials issues warnings seen with an AX-3.8 Workbench platform connection to it, in these areas:
    • In the Platform Administration view, a yellow warning box remains in the bottom right area of this view: Factory default platform credentials detected
      Image
      This warning remains until you change the credentials to non-defaults, using Update Authentication from this same Platform Administration view.
  • In the Application Director view, upon station startup a text warning is seen in station output before any other messaging.
    Image

Note that related to this change in AX-3.8 digest platform credentials, that station backups no longer store platform credentials which can affect backup restoration behavior. For related details, see AX-3.8 changes to backup dist usage.

Related Links

  • Update Authentication (Parent Topic)

    • Index | Prev | Next

    Copyright © 2000-2016 Tridium Inc. All rights reserved.