DSM Settings
You can modify the following DSM settings to change the style of the login screen, customize the ports used for HTTP service, enhance the security of browsing session, and configure the router ports.
Login Style
Here you can change the login style by choosing from a variety of templates and displaying a logo or a background image on your DSM's login screen.
To customize login page title:
Enter a new name in Login page title.
To change the login template:
Select a template you want and click Apply. The chosen template will be displayed on your login screen next time you log in to your RackStation.
To change the background image of the login screen:
- Click the rectangular image or the "+" icon (viewable only when the previously-selected image is removed) at the middle of the rectangle in the Background section, and then do any of the following to select your background image:
-
If you want to use an image stored on your RackStation, select a folder in which your images are saved on the left panel and double-click the image, or select the image and click Select.
-
If you want to use the default wallpaper provided by Synology, click Default Wallpaper, double-click the image, or select the image and click Select.
- If you want to select an image that have been used as the background image before, double-click the image in the My Previous Images section, or select the image and click Select.
-
If you want to use an image stored on your computer, click Upload next to Use My Image, and then double-click the image to select the image.
-
Choose how the background image is arranged and the background color from the drop-down menus in the Background section. You can also click Preview to preview the login screen and see if further adjustments are needed.
-
Click Apply.
To add a logo to the login screen:
- Click the rectangular image or the "+" icon (viewable only when the previously-selected image is removed) at the middle of the rectangle in the Logo section, and then do any of the following to select your logo image:
- If you want to use an image stored on your RackStation, select a folder in which your images are saved on the left panel and double-click the image, or select the image and click Select.
- If you want to select an image that have used as the logo before, double-click the image in the My Previous Images section, or select the image and click Select.
- If you want to use an image stored on your computer, click Upload next to Use My Image, and then double-click the image to select the image.
- Note: The size of the image file must be less than 1 MB.
- Choose a way of alignment from the drop-down menu in the Logo section. You can also click Preview to preview the login screen and see if further adjustments are needed.
- Click Apply.
To remove the background image or logo:
Click Remove in the Background or Logo section, and your previously-selected image will be removed.
HTTP Service
You can change the default port number for the Management UI, and Audio Station. When HTTPS connection is enabled, connecting to the server via HTTP will be encrypted via the SSL/TLS encrypting mechanism.
To change the default port number:
-
Enter the port number in the HTTP or HTTPS field.
-
Click Apply.
To Enable HTTPS connection:
-
Tick Enable HTTPS connection.
-
Click the optional Import Certificate or check Automatically redirect HTTP connections to HTTPS. (See the section below for more information.)
-
Click Apply.
About redirecting to HTTPS connection:
When the option Automatically redirect HTTP connections to HTTPS is checked, you will be redirected to port 5001 while trying to access the web management UI through port 5000.
Ports used for HTTPS connection:
- Web Management UI: The port number is 5001, so you can access the management UI through the secure channel: https://server-IP:5001/
- Web Station: The port number is 443, so you can access Web Station through the secure channel: https://server-IP:443/ or https://server-IP:443/
- Photo Station: The port number is 443, so you can access Photo Station through the secure channel: https://server-IP:443/photo/ or https://server-IP:443/photo/
About importing certificate:
If you have a certificate issued by the trusted Certificate Authority (CA), please click Import Certificate to upload your own certificate and private key in order to host a valid SSL server. The certificate should match the private key. Please keep your private key safely.
Security
The security options allow you to modify the security level during each DSM browsing session by doing the following:
-
Set the logout timer: An automatic logout occurs if you are inactive for the time period you specified in the logout timer.
-
Skip IP checking: If you access RackStation through a HTTP proxy and encounter random logouts, you can skip IP checking.
To set the logout timer:
- Enter any value between 1 to 65535 in Logout timer (minutes) to specify the idle time period before the automatic logout.
-
Click Apply.
To skip IP checking:
Tick
Enhance browser compatibility by skipping IP checking.
Router Port
When you set up DSM's port forwarding rule on your router, if you specifies different port numbers for the router port (assigned on your router) and the local port (assigned on your RackStation), you need to enter the router port number here to make sure RackStation files you shared to Internet services (such as Google docs) can be accessed successfully.
To enable router port configuration:
-
Enter the DNS hostname or public IP address of your RackStation in the Hostname or static IP field.
-
Enter the router port number you specified when you set up DSM's port forwarding rule on your router in the DSM (HTTP) or DSM (HTTPS) fields.
-
Click Apply.
Certificate
A certificate can be used to secure SSL services of the RackStation, such as web (all HTTPS services), mail, or FTP. Having a certificate allows users to validate the identity of a server and the administrator before sending any confidential information. The Certificate tab provides options to manage and view the status of RackStation certificates, allowing you to create, import/export, or renew certificates. The certificate setup wizard helps create self-signed certificates or download certificate signing requests (CSR) for registration with certificate authorities (CA).
Self-signed Certificates
A self-signed certificate refers to a certificate that was created and signed by the same entity whose identity it certifies (in this case, the RackStation). Self-signed certificates are signed with the private key generated by the RackStation. Because self-signed certificates are not issued by third-party certificate authorities, they provide less proof of the identity of the server and are usually only used to secure channels between the server and a group of known users.
To create a self-signed certificate:
- Click Create certificate.
- Follow the instructions of the setup wizard.
- Note: Creating a self-signed certificate will replace the existing certificate of the RackStation.
Certificate Signing Requests
In order to apply for a certificate from a third-party certificate authority, you must first create a certificate signing request (CSR). A certificate signing request is an encrypted body of text generated by the RackStation containing information that will be included in your certificate such as your domain name, organization name, general location, and email address. The setup wizard can help you generate certificate signing request in order to apply for a signed certificate for the RackStation.
To acquire a certificate from a commercial or third-party certificate authority, you will need to provide your personal or organization's identification, and prove you are the owner of the domain name that was entered in the common name field of the certificate signing request.
Note:
A private key shall also be generated along with the certificate signing request. Certificate authorities do not need this private key. Please keep the private key for your RackStation safe and secret.
To create a certificate signing request:
- Click Create certificate.
- Follow the instructions of the setup wizard to create and download the certificate signing request.
Once your certificate has been issued by the certificate authority, it can be imported along with your private key (see below for instructions).
Exporting Certificates
Existing certificates can be downloaded for management or archival purposes. The exported file contains the certificate, private key, and self-signed root certificate of the RackStation.
To export a certificate:
- Click the Export certificate button.
Importing Certificates
This option allows you to imported certificates issued from certificate authorities or previously exported certificates, together with the private key.
To import a certificate:
- Click the Import certificate button.
- Note: Intermediate certificates are optional for some certificate authority-issued certificates.
Renewing Certificates
When your certificate is about to expire, it can be renewed using this option.
To renew a certificate:
- Click Create certificate.
- Select Renew certificate and click Next
- A new private key and certificate signing request will be created.