DSM Settings

You can modify the following DSM settings to change the style of the login screen, customize the ports used for HTTP service, enhance the security of browsing session, and configure the router ports.

Login Style

Here you can change the login style by choosing from a variety of templates and displaying a logo or a background image on your DSM's login screen.

To customize login page title:

Enter a new name in Login page title.

To change the login template:

Select a template you want and click Apply. The chosen template will be displayed on your login screen next time you log in to your DiskStation.

To change the background image of the login screen:

  1. Click the rectangular image or the "+" icon (viewable only when the previously-selected image is removed) at the middle of the rectangle in the Background section, and then do any of the following to select your background image:
  2. Choose how the background image is arranged and the background color from the drop-down menus in the Background section. You can also click Preview to preview the login screen and see if further adjustments are needed.
  3. Click Apply.

To add a logo to the login screen:

  1. Click the rectangular image or the "+" icon (viewable only when the previously-selected image is removed) at the middle of the rectangle in the Logo section, and then do any of the following to select your logo image:
  2. Choose a way of alignment from the drop-down menu in the Logo section. You can also click Preview to preview the login screen and see if further adjustments are needed.
  3. Click Apply.

To remove the background image or logo:

Click Remove in the Background or Logo section, and your previously-selected image will be removed.

HTTP Service

You can change the default port number for the Management UI, and Audio Station. When HTTPS connection is enabled, connecting to the server via HTTP will be encrypted via the SSL/TLS encrypting mechanism.

To change the default port number:

  1. Enter the port number in the HTTP or HTTPS field.
  2. Click Apply.

To Enable HTTPS connection:

  1. Tick Enable HTTPS connection.
  2. Click the optional Import Certificate or check Automatically redirect HTTP connections to HTTPS. (See the section below for more information.)
  3. Click Apply.

About redirecting to HTTPS connection:

When the option Automatically redirect HTTP connections to HTTPS is checked, you will be redirected to port 5001 while trying to access the web management UI through port 5000.

Ports used for HTTPS connection:

About importing certificate:

If you have a certificate issued by the trusted Certificate Authority (CA), please click Import Certificate to upload your own certificate and private key in order to host a valid SSL server. The certificate should match the private key. Please keep your private key safely.

Security

The security options allow you to modify the security level during each DSM browsing session by doing the following:

To set the logout timer:

  1. Enter any value between 1 to 65535 in Logout timer (minutes) to specify the idle time period before the automatic logout.
  2. Click Apply.

To skip IP checking:

Tick Enhance browser compatibility by skipping IP checking.

Router Port

When you set up DSM's port forwarding rule on your router, if you specifies different port numbers for the router port (assigned on your router) and the local port (assigned on your DiskStation), you need to enter the router port number here to make sure DiskStation files you shared to Internet services (such as Google docs) can be accessed successfully.

To enable router port configuration:

  1. Enter the DNS hostname or public IP address of your DiskStation in the Hostname or static IP field.
  2. Enter the router port number you specified when you set up DSM's port forwarding rule on your router in the DSM (HTTP) or DSM (HTTPS) fields.
  3. Click Apply.

Certificate

A certificate can be used to secure SSL services of the DiskStation, such as web (all HTTPS services), mail, or FTP. Having a certificate allows users to validate the identity of a server and the administrator before sending any confidential information. The Certificate tab provides options to manage and view the status of DiskStation certificates, allowing you to create, import/export, or renew certificates. The certificate setup wizard helps create self-signed certificates or download certificate signing requests (CSR) for registration with certificate authorities (CA).

Self-signed Certificates

A self-signed certificate refers to a certificate that was created and signed by the same entity whose identity it certifies (in this case, the DiskStation). Self-signed certificates are signed with the private key generated by the DiskStation. Because self-signed certificates are not issued by third-party certificate authorities, they provide less proof of the identity of the server and are usually only used to secure channels between the server and a group of known users.

To create a self-signed certificate:

  1. Click Create certificate.
  2. Follow the instructions of the setup wizard.
  3. Note: Creating a self-signed certificate will replace the existing certificate of the DiskStation.

Certificate Signing Requests

In order to apply for a certificate from a third-party certificate authority, you must first create a certificate signing request (CSR). A certificate signing request is an encrypted body of text generated by the DiskStation containing information that will be included in your certificate such as your domain name, organization name, general location, and email address. The setup wizard can help you generate certificate signing request in order to apply for a signed certificate for the DiskStation.

To acquire a certificate from a commercial or third-party certificate authority, you will need to provide your personal or organization's identification, and prove you are the owner of the domain name that was entered in the common name field of the certificate signing request.

Note:

A private key shall also be generated along with the certificate signing request. Certificate authorities do not need this private key. Please keep the private key for your DiskStation safe and secret.

To create a certificate signing request:

  1. Click Create certificate.
  2. Follow the instructions of the setup wizard to create and download the certificate signing request.

Once your certificate has been issued by the certificate authority, it can be imported along with your private key (see below for instructions).

Exporting Certificates

Existing certificates can be downloaded for management or archival purposes. The exported file contains the certificate, private key, and self-signed root certificate of the DiskStation.

To export a certificate:

Importing Certificates

This option allows you to imported certificates issued from certificate authorities or previously exported certificates, together with the private key.

To import a certificate:

Renewing Certificates

When your certificate is about to expire, it can be renewed using this option.

To renew a certificate:

  1. Click Create certificate.
  2. Select Renew certificate and click Next
  3. A new private key and certificate signing request will be created.