Borealis Security FAQs
·
What security software is enabled/pre-installed on the hub?
A Firewall is installed and
enabled on the hub.
·
What is the transport security for a Borealis system? Borealis Cloud is fully deployed
under an Amazon VPC (Virtual Private Cloud) with multiple subnets. Reference: https://aws.amazon.com/vpc/. For transport we use an SSL certificate.
·
How can the Borealis Security Certificate be viewed? On a web browser, go to the Borealis
URL (https://keri.aetheros.net) >> Click the small lock icon to the left of
the address field >> Click Connection is Secure >> Click the small
certificate icon. The certificate details will then appear.
·
Does the system operator have single or two-factor authentication?
By default, single-factor authentication is enabled for a Borealis operator –
but two-factor authentication can be enabled once the user is logged-in.
Two-factor authentication is via password and Email.
·
How long does the user authentication token last? The access token lasts for 20 minutes
and the refresh token is 14 days.
·
What authentication is there between a remote workstation, the hub
and the Cloud? The
authentication between a workstation and the Cloud is by using the Authorization
Code Flow and the authentication between a hub and the Cloud is by using machine-to-machine
authentication.
In addition, hubs also use the following ports for controller communication and scanning.
- NXT-MSC hub uses TCP/IP port 3001 (default port number) for communicating and UDP port 5353 when scanning for MSC
controllers.
- True Mercury controllers (EP and LP series) also use TCP/IP port 3001 (default port number) for communicating and UDP port 5353 when scanning.
- An NXT hub uses TCP/IP port 10050 for communicating and the following UDP
ports for scanning for controllers: 11434, 11435, 11067 and 11068.
- A PXL hub uses remote TCP/IP port 10001 (default port) and server-side TCP/IP port 11021 (default port) for communication and scanning.
·
How can I find the hub’s MAC address (if the IT department are
restricting access to the router by MAC address)? The hub’s MAC address can be found
printed on the outside of the hub.
· How are the hubs updated? The Borealis system hubs are updated using an internally built service called the ‘Updater Service’.
Related Articles
Borealis FAQs
1.0 Borealis General Questions What is Borealis? Borealis is Keri Systems’ cloud-based access control system. Borealis gives you complete visibility and control of your system from any computer, tablet or mobile device that has a web browser and an ...Borealis Troubleshooting Guide
1.0 Borealis System Troubleshooting Cannot view the System - This is most likely caused by the account not being added as a system operator. Once an e-mail has been registered and verified, that e-mail address should then be added as a new system ...Borealis Overview
1.0 Introduction The new Borealis Cloud user interface is a completely new and re-designed front end for Borealis. It is extremely easy to learn and operate and allows you to quickly and easily find all your access control data - all in one place. ...Update Operator Security Question
The following steps explain how to change the security question that is associated with your Borealis account. The security question and answer is used if you have lost your log in password and therefore wish to reset the password. From the Borealis ...Borealis Data Sheet
Borealis Data Sheet (attached)