Sign in with
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

About mlaml

since ‎11-02-2020
‎07-19-2024
mlaml
Established Member

Re: Device Portal - Remote VPN management

by in ctrlX SERVICES
‎02-08-2022 05:19 PM
‎02-08-2022 05:19 PM
Hi Mauro, it's been a while since we have had a look at the problem together. Could you give a small update? As far as I understood, you were able to solve the issue and have published a tutorial [1] for it, right? [1] https://developer.community.boschrexroth.com/t5/Store-and-How-to/Machine-remote-access-using-VPN-and-Firewall-apps-with-ctrlX/ba-p/50305 ... View more

Re: Device Portal - Remote VPN management

by in ctrlX SERVICES
‎10-13-2021 04:39 PM
‎10-13-2021 04:39 PM
Hi, we've tried to reproduce the problem but had no success. In our test scenario, initiating the connection via Device Portal worked without problems. Would you be available for a little debug session in which we have a look at the problem together?   ... View more

Re: Change the certififcate for the reverse proxy aka webserver

by in ctrlX CORE
‎06-25-2021 07:24 AM
‎06-25-2021 07:24 AM
Hi, we have (at least I think so) the same scenario here in our network (the ctrlX CORE VIRTUAL is made available via <subdomain>.<domain>.tld) and for us it works. We are currently improving the documentation on how to replace the web server certificate, because it is not intuitive. Let me describe how it works and how you can assign an individual certificate. Nevertheless, if you see (technical) issues with the way it is done please don't hesitate to say so - we are happy about feedback! First of all - yes, the "Web Server" section under "Certificates & Keys" contains the certificates & keys for the device Web Server (to be precise: for the Reverse Proxy). There are two certificates (+ their corresponding keys) on the device: webserver_cert.pem / webserver_key.pem: Fallback certificate/key which ensures that you can always log in to the system by using the IP address. This prevents that you replace the certificate with an invalid / malformed one and lock your self out. You cannot delete or replace those files - both will be re-generated upon next boot and they will always contain the asterisk as a wildcard ("CN=*") webserver_custom_cert.pem / webserver_custom_key.pem: Those are the files that you want to replace when you issue a custom certificate. By default, those files use "CN=*" as well, but they can be replaced. Please note: They can be replaced, but they cannot be removed. They will be re-generated upon next start as well. When you access the device via the URL, the Reverse Proxy checks whether the second certificate matches to the domain and uses the custom certificate. Therefore, please try to to replace the *_custom* files with your individual key + certificate and restart the device. It should work. As I said - we are currently working on improving the documentation and we are aware that it is not user-friendly (we are also working on that). But from a technical perspective, it should work. 🙂 Kind regards ... View more

Re: SSH protocol deactivated message

by in ctrlX CORE
‎06-08-2021 09:41 AM
‎06-08-2021 09:41 AM
Hi, you're correct - the behaviour regarding SSH as a debug interface has changed with RM 21.03.2. Beginning with this release, the SSH service is disabled by default and automatically enabled when a system-user account is activated. When the system-user account is present, SSH behaves exactly as before - you can assign the permission to other users via the membership in the "sshuser" group. When the system-user account expires or is deleted manually, SSH is disabled automatically. This change was required to address a security risk which might allow an attacker to escalate its privileges via a combination of SSH access and the Ubuntu Core snap mechanism. Since SSH is considered a development interface, we assume that for regular operation SSH is not required. Therefore, I can currently not promise you that the old behaviour will return. Could you explain your use case? This might help us to better understand who uses SSH and what for. ... View more

Re: VPN app - autoStartup problems

by in ctrlX WORKS
‎06-01-2021 10:42 AM
1 Like
‎06-01-2021 10:42 AM
1 Like
Hi, we are currently investigating the problem and plan to release a fix for this bug until the next release milestone RM21.07. 🙂 ... View more
Latest Tags
No tags yet

OK
OK
Icon--AD-black-48x48Icon--address-consumer-data-black-48x48Icon--appointment-black-48x48Icon--back-left-black-48x48Icon--calendar-black-48x48Icon--center-alignedIcon--Checkbox-checkIcon--clock-black-48x48Icon--close-black-48x48Icon--compare-black-48x48Icon--confirmation-black-48x48Icon--dealer-details-black-48x48Icon--delete-black-48x48Icon--delivery-black-48x48Icon--down-black-48x48Icon--download-black-48x48Ic-OverlayAlertIcon--externallink-black-48x48Icon-Filledforward-right_adjustedIcon--grid-view-black-48x48IC_gd_Check-Circle170821_Icons_Community170823_Bosch_Icons170823_Bosch_Icons170821_Icons_CommunityIC-logout170821_Icons_Community170825_Bosch_Icons170821_Icons_CommunityIC-shopping-cart2170821_Icons_CommunityIC-upIC_UserIcon--imageIcon--info-i-black-48x48Icon--left-alignedIcon--Less-minimize-black-48x48Icon-FilledIcon--List-Check-grennIcon--List-Check-blackIcon--List-Cross-blackIcon--list-view-mobile-black-48x48Icon--list-view-black-48x48Icon--More-Maximize-black-48x48Icon--my-product-black-48x48Icon--newsletter-black-48x48Icon--payment-black-48x48Icon--print-black-48x48Icon--promotion-black-48x48Icon--registration-black-48x48Icon--Reset-black-48x48Icon--right-alignedshare-circle1Icon--share-black-48x48Icon--shopping-bag-black-48x48Icon-shopping-cartIcon--start-play-black-48x48Icon--store-locator-black-48x48Ic-OverlayAlertIcon--summary-black-48x48tumblrIcon-FilledvineIc-OverlayAlertwhishlist