Creating a Direct FrameWorX Connection
A direct FrameWorX connection is configured on the client (the machine that is reading the data).
The server that you connect to and that provides the data is referred to as the target server. The target server does not need to be configured, other than adding a certificate for a secured connection.
To create a direct FrameWorX connection:
-
Open Workbench and in Project Explorer, expand your project > Servers and Redundancy, and double-click Server Connections.
-
In the Connections panel, select Click here to add new item.
-
In the Connection Settings form, enter a name of the connection and select Create Direct Connection.
-
In Address, enter the IP address, computer name, or DNS name of the target server.
-
In Protocol, select the preferred option. We recommend selecting the Secured (HTTPS) connection, which requires a valid server certificate.
-
In Authentication Mode, select one of the following options.
-
Anonymous: There is no user support, or no user should be logged in. Use mainly for testing purposes with GENESIS Security on the target server inactive or in testing mode. If the Security is active, an Anonymous user gets the rights of the default group.
-
Integrated Windows Authentication: The connection is authenticated by a Windows user credentials. Both the source and the target servers must be in the same Active Directory domain.
-
Username and Password: Only available for secured (HTTPS) protocol. The connection is authenticated by credentials of a GENESIS Security user (the Security must be active). Use when the source and the target servers are in different Active Directory domains.
-
Certificate: Only available for secured (HTTPS) protocol. The connection is authenticated by a user (client) certificate.
The client certificate is different from the server certificate used for communication encryption. This certificate identifies the actual user.
-
-
When an authentication mode for a secured connection is selected, enter the required credentials.
-
For the Username and Password mode, enter the credentials of a user existing in the GENESIS Security database on the target server.
-
For the Certificate mode, click
next to the User Certificate field to select the desired certificate, or enter it manually in the text box. You can use any certificate that has a private key.
-
-
When finished, click Test Connection next to the Name field.
When creating a secure (HTTPS) connection, the server certificate will initially be rejected. This is expected, since an administrator's approval is required to establish the connection. In the warning message, click Yes to confirm that the certificate should be trusted.
When you get the Success message, click OK to close it, and then click Apply & Close.
- When a certificate is used for authentication, it also gets initially rejected, and you must manually move it to the trusted store on the target server. Do the following:
- Go to the target server and open the authentication certificate store in C:\ProgramData\ICONICS\11\pki\auth.
- Open the rejected folder, select your client certificate, and move it to the trusted folder.