59
edits
Administration: Difference between revisions
Adds information about HSTS and how a accidental lock out could be solved.
Tom.Wegener (talk | contribs) (Adds information about HSTS and how a accidental lock out could be solved.) |
|||
| Line 69: | Line 69: | ||
The Default Mode is always the fall-back if the process does not work. | The Default Mode is always the fall-back if the process does not work. | ||
The '''Reset to default SSL certificate''' button will remove any user-provided SSL certificate and the user interface will be served using the default SSL certificate. | The '''Reset to default SSL certificate''' button will remove any user-provided SSL certificate and the user interface will be served using the default SSL certificate. | ||
==== Since 4.1.1: ==== | |||
With the version 4.1.1/4.2 the option to enable HTTP Strict Transport Security (HSTS) for the multimeter was added. HSTS stops users from trying to access the multimeter via unencrypted HTTP or ignoring invalid certificates for the multimeter. | |||
If the administrator locked themselves out by enabling HSTS there are multiple options: | |||
* If HSTS was already activated and the certificates were changed on purpose after that, they have to remove information about the site from their browser. | |||
* If HSTS was already activated and the certificates were changed accidental, they are able to connect to the multimeter via a private window or via the ip address. | |||
=== Certificate Authority === | === Certificate Authority === | ||