User's Manual
38 Document Number: 0100SM1401 Issue: 10-14
HTTP Secure (HTTPS)
HTTPS provides a secure and authenticated method for remotely accessing the Q data radios Web User Interface (WUI) for
configuration and diagnostics.
To access the Q data radios via HTTPS, use a web browser which has HTTPS capabilities. Common web browsers which
provide HTTPS capabilities include: Internet Explorer, Firefox and Chrome.
The HTTPS client (web browser) will request a digitally-signed certificate from the HTTPS server (Q data radios) to help
ensure that the target device is authentic.
All traffic over the HTTPS connection is encrypted.
Two methods of certificate management are available: Self-signed certificates generated by the radio itself or the use of
certificates generated by external certificate servers.
Unsecured Network
•SSH will help to prevent “man in the
middle” attacks over Insecure networks.
•All traffic between the client and TUI is
encrypted.
Network Management Server
•Using HTTPS Protocol, the Web Browser connects
to the target remote radio web server.
•The web browser uses digitally-signed certificates
to confirm the identity of the remote device.
•The web browser will have a list of trusted
Certification Authorities. If the Certificate is not
signed from a trusted CA, a warning message will
be displayed.
•Remote certificate is compared with local copy (or
with copy on certificate server).
•If certificates don’t match (or don’t exist) a warning
message is displayed.
•If certificates match then warnings are not
displayed.
Remote Devices
•Remote devices can be configured to enable
HTTP and HTTPS separately.
•Certificates can be self-signed (generated by
the Q data radios radio itself) or 3rd-party
certificates can be used.
Part D – Feature Detail