How to configure automatic encryption for the LNL-500/1000/2000 controller
Procedure Steps
The controller must have a 256 KB chip in order to utilize encryption.1) In System Administration, on the System Options > Controller Encryption tab, click [Modify] and select Automatic Key Management Encryption.
2) In the Master Key Entry dialog box, select Random Master Key Generation and click [OK].
Note: If you want a backup of the key, export the key to a file.
3) Click [OK] to save the changes on the Controller Encryption tab.
4) In the Access Panels folder, select the panel to be configured for encryption.
5) On the Diagnostics tab, clear the Always Download Plain Firmware check box. This must be done so that the AES firmware can be downloaded to the ISC.
6) On the controller, set DIP switch 8 to the off position.
7) In Alarm Monitoring, right-click on the panel and select Download Firmware.
8) Log out of Alarm Monitoring and log in again. The AES firmware is displayed for the ISC.
9) After the firmware has been downloaded, in System Administration, select the access panel.
10) On the Encryption page, select the Use an encrypted connection check box.
11) In Alarm Monitoring, right-click on the panel and select Download Database.
12) On the panel, set DIP switch 8 to the ON position.
13) Log out of Alarm Monitoring and log in again.
14) Right-click on the panel and select Properties. You will now see that the connection is encrypted, and the panel has a yellow icon.
For more information, refer to the Encryption for Controllers User Guide.
Applies To
OnGuard (All versions)LNL-500
LNL-1000
LNL-2000
Additional Information
Does NOT Apply to Series 2 controllers, such as LNL-2220 and LNL-3300. See separate knowledge base article on enabling encryption in Series 2 controllers.