Docs
mobileIoT Hardware
Documentation

Security

The Security section provides centralized access to privacy and access control features for the CR3171 gateway. These settings are essential for safeguarding device management, file transfers, and API access.

You can access the Security settings via the Device Settings page, with Security preselected in the left-hand menu.

Summary

The Summary panel offers a quick glance at the current security configuration. As of version 3.1.0 , the following controls are available:

  • Allow file upload to the device :
    A toggle switch that enables or disables file uploads via the Ethernet interface.
    Default : ON
  • Admin Password:
    Protects access to the WebUI and device configuration.
  • File Upload Password :
    Secures file transfers to the device from other network participants.
  • API Password :
    Restricts access to the device’s API endpoints.

Each item includes a padlock icon and expandable configuration options. All settings are managed under Advanced Settings > Device Access Settings.

Password Management

To enhance device security and comply with modern cybersecurity standards, version 3.1.0 introduces new password complexity requirements for all security-relevant credentials.

New Password Guidelines

When setting or updating any of the following passwords, Admin, File Upload, or API , the new password must meet the following criteria:

  • Must contain at least:
    • One lowercase letter
    • One uppercase letter
    • One number
    • One special character (e.g., !, @, #, $)
    • Minimum length: 16 characters
    • Maximum length: 63 characters
    • No more than 3 identical consecutive characters (e.g., aaa, 111)

These rules are designed to prevent weak or easily guessable passwords and reduce the risk of brute-force or dictionary attacks.

How to Update Passwords

For each password type, follow these steps:

  • Enter current Admin password (required for authentication)
  • Enter new password twice to confirm
  • Click Apply to save changes

The WebUI will provide real-time feedback on password strength and compliance with the new rules.