By default, plugin communications are unencrypted. To enable encryption for the CCURE 9000 Access Control plugin, you must change the configuration file on the Security Center
server that hosts the plugin role.
What you should know
- This procedure is required for servers that host the CCURE 9000 Access Control plugin
role, including a failover server, but not Security Desk workstations.
- The plugin configuration file contains instructions for both unencrypted and encrypted
communication. Only one type of communication can be enabled at a time.
IMPORTANT: The plugin and the proxy service must both be encrypted or both
unencrypted. If the proxy is encrypted and the plugin server is not, the plugin cannot
operate. To minimize downtime, update the configuration files on the proxy server and plugin
server at the same time.
Procedure
-
On the plugin server, find the Genetec.Plugins.CCURE.dll.config
file.
By default, the file is in C:\Program Files (x86)\Security Center
Plugins\CCURE\Plugin.
-
Make a backup copy of the configuration file.
-
Open the configuration file in Notepad.
-
Find the following line:
<endpoint
address="net.Tcp://localhost:5645/Genetec/CCUREAccessControl"
.
The configuration file contains two
<endpoint>
tags:
- The first
<service>
tag (shown in blue) provides the
instructions for unencrypted communications.
- The second
<service>
tag (shown in green) provides the
instructions for encrypted communications and is deactivated by comment tags
<!-- -->
.
-
Deactivate the first service instructions by surrounding the
<endpoint
and </endpoint>
tags with a comment
tag <!-- -->
.
Tip: The first endpoint tag contains
bindingConfiguration="IAccessControlService"
.
-
Remove the comment tags
<!-- -->
from the second service
instructions.
Tip: The second endpoint tag contains
bindingConfiguration="IAccessControlService_Encrypted"
.
The following side-by-side example shows the configuration file when it is set for
unencrypted communications (left) and for encrypted communications (right). The comment
tags in the example are highlighted in yellow.
-
Save the configuration file.
-
To apply the changes, in Config Tool, deactivate the CCURE 9000 Access Control plugin
role, and then re-activate it.