Connecting to the Kaspersky IoT Secure Gateway 1000 web interface

Expand all | Collapse all

You can connect to the Kaspersky IoT Secure Gateway 1000 web interface using any supported browser. The browser must be installed on a computer that has access to Kaspersky IoT Secure Gateway 1000 through the internal network. Kaspersky IoT Secure Gateway 1000 is delivered with a statically configured IP address of 192.168.1.1. The DHCP server is enabled by default in Kaspersky IoT Secure Gateway 1000. Therefore, when you connect your computer to the network that is connected to Kaspersky IoT Secure Gateway 1000 through its internal network connector, your computer will receive an IP address automatically.

Connection to the Kaspersky IoT Secure Gateway 1000 web interface is established using two-factor authentication, which requires the following data:

• Account name and password.

  You can find the name and password of the administrator account for the first connection to the web interface in the instructions for the first connection provided below. These credentials are temporary and are changed by the administrator after the first login to the web interface.

• Administrator certificate or user certificate

  The certificates for the administrator’s first connection to the web interface are uploaded to Kaspersky IoT Secure Gateway 1000 by default. After the first connection, the administrator has to update these certificates.

The administrator or user certificate is also used to create a secure connection between Kaspersky IoT Secure Gateway 1000 and the browser used for the connection. The archive with the certificate for the administrator's first connection to the web interface is included in the distribution kit. The administrator must upload this archive to the browser before connecting to Kaspersky IoT Secure Gateway 1000 for the first time. After renewing certificates, the administrator and the user must upload the new certificates to the browser.

The steps to connect to the Kaspersky IoT Secure Gateway 1000 web interface depend on your role in the system (administrator or user).

When connecting to Kaspersky IoT Secure Gateway 1000, only one active session is possible at a time. If the administrator connects to the web interface of Kaspersky IoT Secure Gateway 1000 during an active user session, the user connection session will be terminated. The user also cannot connect to the web interface of Kaspersky IoT Secure Gateway 1000 during an active administrator session.

Administrator

Before connecting to the Kaspersky IoT Secure Gateway 1000 web interface, make sure that you have a USB drive or USB token with a valid certificate.

Depending on whether you connect to the Kaspersky IoT Secure Gateway 1000 web interface for the first time or not for the first time, use one of the following approaches:

• First connection to the Kaspersky IoT Secure Gateway 1000 web interface

  To connect to the Kaspersky IoT Secure Gateway 1000 web interface for the first time:

  1. Connect a USB drive with the TlsClientAdmin.p12 archive containing the administrator certificate to the computer that you want to use for connecting to the Kaspersky IoT Secure Gateway 1000 web interface.

     The TlsClientAdmin.p12 archive for the first connection to the web interface is included in the distribution kit.

  2. Upload the certificate from the TlsClientAdmin.p12 archive to the browser. You can find information on how to upload the archive with the certificate to the browser in the browser documentation.

     A password is required to upload the certificate to the browser. Default certificate password: adminadmin.

  3. Open your browser and in the address bar, enter the IP address of Kaspersky IoT Secure Gateway 1000 web interface: https://192.168.1.1.

     The Kaspersky IoT Secure Gateway 1000 login page opens.

  4. Enter the default name and password and click Continue.

     User name for the first login to the web interface: admin.

     Password for the first login to the web interface: adminadmin.

     These credentials are temporary and are required only for the first connection to the Kaspersky IoT Secure Gateway 1000 web interface. They must be changed at the next step.

  5. In the credentials change window that opens, enter the new name and password and click Save.

     The password must contain at least 8 unique characters. Your account credentials are updated, and the Kaspersky IoT Secure Gateway 1000 web interface page opens.

  After you connect to the Kaspersky IoT Secure Gateway 1000 web interface for the first time, we recommend updating the certificates and creating a user account.

• Reconnection to the Kaspersky IoT Secure Gateway 1000 web interface

  To connect to the Kaspersky IoT Secure Gateway 1000 web interface again:

  1. If a USB token is used to access the Kaspersky IoT Secure Gateway 1000 web interface:
     • Make sure that the software supplied to support the token operation is installed on the computer from which the web interface is being accessed.
     • Make sure the token is connected to the computer from which the web interface is being accessed.
  2. If the USB token is not used, make sure that the archive with the administrator certificate required for creating a secure connection is uploaded to the browser. You can find information on how to upload the archive with the certificate to the browser in the browser documentation.
  3. Open your browser and in the address bar, enter the IP address of Kaspersky IoT Secure Gateway 1000 web interface: https://192.168.1.1.
  4. If a USB token is used to access the Kaspersky IoT Secure Gateway 1000 web interface:
     1. In the certificate selection window that opens, select the certificate located on the USB token and click OK.
     2. Enter the token password.

     If a USB token is not used, skip this step.

  5. Enter your login and password and click Continue.

     If you enter incorrect account information multiple times, the system is temporarily blocked (the default blocking time is five minutes). When the blocking time expires, you can try again.

  If your connection is successful, the browser window displays the Kaspersky IoT Secure Gateway 1000 web interface page.

User

Before connecting to the Kaspersky IoT Secure Gateway 1000 web interface, do the following:

• Make sure you have a USB drive or USB token with a valid user certificate.
• Request your user name and password from the administrator upon the first connection or after your account credentials have expired).

You can connect to the Kaspersky IoT Secure Gateway 1000 web interface only after the administrator has created your user account.

To connect to the Kaspersky IoT Secure Gateway 1000 web interface:

1. If a USB token is used to access the Kaspersky IoT Secure Gateway 1000 web interface:
   • Make sure that the software supplied to support the token operation is installed on the computer from which the web interface is being accessed.
   • Make sure the token is connected to the computer from which the web interface is being accessed.
2. If the USB token is not used, make sure that the archive with the user certificate required for creating a secure connection is uploaded to the browser. You can find information on how to upload the archive with the certificate to the browser in the browser documentation.
3. Open your browser and in the address bar, enter the IP address of Kaspersky IoT Secure Gateway 1000 web interface: https://192.168.1.1.
4. If a USB token is used to access the Kaspersky IoT Secure Gateway 1000 web interface:
   1. In the certificate selection window that opens, select the certificate located on the USB token and click OK.
   2. Enter the token password.

   If a USB token is not used, skip this step.

5. Enter your login and password and click Continue.

   If you enter incorrect account information multiple times, the system is temporarily blocked (the default blocking time is five minutes). When the blocking time expires, you can try again.

If your connection is successful, the browser window displays the Kaspersky IoT Secure Gateway 1000 web interface page.