/
CE - SAP IT Requirements and Additional Information

CE - SAP IT Requirements and Additional Information

Owned by Colin Berndt
yesterday at 1:50 pm
2 min read

Secure Access Point - IT Information

  • Open Kitchen is PCI Level 1 certified when utilizing an SAP.

  • Ethernet Connection Required (via WAN port furthest from the power cord on the SAP)

  • Requires the following URLs to be Whitelisted.

    • secure10.sitesage.net & secure192.sitesage.net

    • Your IT team can whitelist *.sitesage.net if they prefer.

  • 2.4 GHz Wi-Fi Frequency

    • Channel 11

    • Power 20

  • Defaults to expecting a DHCP connection. If static IP is required, please view the associated documentation on static IP configuration.

  • Communicates using Port 443 over OpenVPN

    • OpenVPN v2.4.5

    • Cipher AES-256-CBC

  • Wi-Fi Security: WPA2 (AES) Personal

  • The LAN ports are disabled from internet access by default.

  • Factory provisioned with an X.509 Client Certificate, ensuring that the SAP and Cloud connections have full two-way authentication.

  • Once data reaches the Open Kitchen Cloud, it is fully protected using SSL/TLS v1.2 or higher certificates.

 

  • Broadcasts 2 Hidden SSIDs

    • The first SSID will allow connection to the SAP, but it will not allow internet access.

    • Certificates are generated for recognized devices, and the connection moves to the other SSID.

    • The second SSID is unique to each SAP, and internet access is only granted via this connection.

    • The SAP is architected such that the Open Kitchen server is the only server with which it can communicate, eliminating the possibility the SAP could be used to connect with a non-secure server.

 

  • The SAP automates the process of IoT equipment provisioning.

    • When utilizing the SAP to connect equipment, no manual labor is required. This creates a secure “plug and play” experience where no IT support, Powerhouse support, or user configuration is required to connect the equipment.

    • We will only need to capture the device ID on the back of the SAP, the location name, and the location’s address to fully provision all of your equipment to your account for the first installation. Any additional equipment connected at a later date will automatically connect and be assigned as well.

    • When connecting equipment directly to the network via Wi-Fi or Ethernet without an SAP, someone is required to manually configure the equipment, identifying the network and entering the password. In our experience, that process is prone to human error which can lead to revisits and frustration.

 

Related content

SAP IT Requirements and Additional Information
SAP IT Requirements and Additional Information
Open Kitchen Training
More like this
Open Kitchen Data Security
Open Kitchen Data Security
PhD Technical Public Documentation
More like this
Automatic Access Point Provisioning Configuration
Automatic Access Point Provisioning Configuration
PhD Technical Public Documentation
More like this
CE - Connectivity View
CE - Connectivity View
Customer Support Knowledge Base
More like this
CE - SAP Signal Range
CE - SAP Signal Range
Customer Support Knowledge Base
More like this
SAP Signal Range
SAP Signal Range
Open Kitchen Training
More like this