Prior to configuration, ensure the device is running the latest firmware. To update the firmware, refer to Update Firmware.

The control system may be monitored and configured using the included web configuration interface. The configuration interface is accessible from a web browser if the control system IP address is known.

The web configuration interface is also accessible through the XiO Cloud® service. For more information, refer to Connect to XiO Cloud Service.

To access the configuration interface:

Web Configuration Interface

The configuration interface provides the following tabs:

The Status tab is the default tab that is displayed, as shown in the previous image.

The configuration interface provides an Actions drop-down menu on the top right of the page. The Actions menu may be accessed at any time.

Actions Menu

Once any changes have been made to the control system configuration, the Actions button changes to a Save Changes button. Click Save Changes to save changes to the configuration settings.

If a reboot is required after changes have been saved, a dialog box is displayed asking whether the reboot should be performed. Select Yes to reboot the device or No to cancel the reboot.

The Actions menu provides the following selections.

Click Save Changes to save any changes made to the configuration settings.

Click Revert to revert the control system back to the last saved configuration settings.

Click Reboot to reboot the control system.

After Reboot is selected, a dialog box is displayed asking whether the control system should be rebooted. Select Yes to reboot the device or No to cancel the reboot.

Click Restore to restore the control system configuration settings to their default values.

After Restore is selected a dialog box is displayed asking whether the device settings should be restored. Select Yes to restore the settings or No to cancel the restore.

Click Update Firmware to upgrade the control system firmware manually with a downloaded PUF (package update file). The Firmware Upgrade dialog box opens.

Firmware Upgrade Dialog Box

To upload a firmware PUF through the web configuration interface:

NOTE: Visit the appropriate device product page or www.crestron.com/Support/Resource-Library to download the latest firmware PUF.

Click the x button to close the Firmware Upgrade dialog box at any time during the upgrade process. Clicking the x button before the PUF is uploaded to the control system cancels the upgrade.

Click Download Logs to download the control system message logs for diagnostic purposes. The message files download as a compressed .tgz file. Once the compressed file is downloaded, extract the message log files to view them.

Click Manage Certificates to manage any certificates that are installed on the control system. For more information on certificate management, refer to 802.1x Configuration.

Click the Status tab on the top left of the configuration interface to display selections for viewing the status of device, network, and USB, and .AV Framework™ software settings.

Click on a selection name to expand the selection. If the selection is expanded, click the selection name again to collapse the section.

Status Tab Selections

Click Device to view general device information.

Status Tab - Device

The following Device information is displayed:

Click + More details at the bottom of the Device tab to display an expanded section that shows additional control system information. If + More Details is selected, click - Less details to collapse the section.

Click Network to view the status of the network settings for the control system.

Status Tab - Network

The following Network information is displayed:

Click the + (plus) icon next to Adapter 1 to display the following Ethernet settings:

Click the + (plus) icon next to Control Subnet to display the following Control Subnet settings (CP4N only):

Click Program to view the status of the program and slave mode settings for the control system.

Status Tab - Program

The following Program information is displayed:

If one or more programs have been loaded to the control system, expandable subsections are shown that correspond with the program slot. Expand the subsection for a given program slot to display details about the loaded program.

Click AV Framework to view the status of the native .AV Framework software program running on the control system

Status Tab - AV Framework

The following AV Framework information is displayed:

If the native .AV Framework software program is enabled, an Open AV Framework Setup button is provided to launch the .AV Framework web configuration utility. For more information on configuring .AV Framework for the control system, refer to the .AV Framework Software for 4-Series Control Systems Operations Guide.

Click the Settings tab on the top left of the configuration interface to display selections for configuring various control system settings.

Settings Selections

Each selection is described in the sections that follow.

NOTE: If an invalid value is entered for a setting, the web interface will not allow changes to be saved until a valid value is entered. Red text is displayed next a setting to indicate an invalid value.

Click System Settings to configure general network and control system settings.

Settings Tab - System Setup

Click the + (plus) icon next to Time/Date to display the following time and date settings.

Settings Tab - System Setup (Time/Date)

NOTE: NTP servers are configured into a particular slot. The server configured for the first table row will be the primary server used for time synchronization. The servers configured into additional table rows will be used as secondary servers.

Click the + (plus) icon next to Network to display the following network settings.

Settings Tab - System Setup (Network)

NOTE: If DHCP is enabled, IP does not function until a reply has been received from the server. The control system broadcasts requests for an IP address periodically.

Click the + (plus) icon next to Control Subnet to display the following Control Subnet settings.

Settings Tab - System Setup (Control Subnet)

NOTE: For more information on the Control Subnet, refer to the "Control Subnet" topic in the 4-Series Control Systems Reference Guide.

NOTE: No port maps can be added if Isolation Mode is turned on.

Click the + (plus) icon next to Web Server to display the following control system web server settings.

Settings Tab - System Setup (Web Server)

Click the + (plus) icon next to Crestron Internet Protocol to display the following Crestron Internet Protocol (CIP) port settings.

Settings Tab - System Setup (Crestron Internet Protocol)

Click the + (plus) icon next to SSH to display the following SSH (Secure Shell) settings.

Settings Tab - System Setup (SSH)

Click the + (plus) icon next to Web XPanel to display the following control system Web XPanel settings.

Settings Tab - System Setup (Web XPanel)

NOTE: Enter "*" to open all ports for the Web XPanel. A range of ports can also be specified.

Click Programs to manage control system programs and to configure subordinate mode settings for the control system.

Settings Tab - Programs

NOTE: For more information on using subordinate mode for a 4-Series control system, refer to the "Master‑Slave Mode" topic in the 4-Series Control Systems Reference Guide.

Click the + (plus) icon next to Slave Mode to display the following subordinate mode settings.

NOTE: For more information on managing programs on a 4-Series control system, refer to the "Program Management" topic in the 4‑Series Control Systems Reference Guide.

Click the + (plus) icon next to Program Slot Management to display the following program management settings.

Each program slot is represented in a table that provides the following information and controls:

To load a new program to the control system:

Add Program Dialog Box

File Upload Dialog Box

To edit the IP table for a control system program (if permitted by the program):

Edit Program Dialog Box

NOTE: If IP table entries have already been defined in the program, these entries will populate the table in the Edit Program dialog box unless the Do not copy IP Table check box was filled when loading the program to the control system.

Click Projects to manage web and mobility projects for the control system.

Settings Tab - Programs

Each loaded project is represented in a table that provides the following information and controls:

To load a new web or mobility project to the control system:

Add Project Dialog Box

NOTE: If the project is both a web and a mobility project, both toggles can be selected.

File Upload Dialog Box

Click Services to manage various external services that integrate with the control system.

Settings Tab - Services

NOTE: If connecting to a Crestron Fusion software on-premises server, connections are made using either traditional (outbound) or inbound communications. For more information, refer to the Crestron Fusion 10 On‑Premises Software Getting Started Guide.

NOTE: For more information on connecting the control system to Crestron Virtual Control (VC-4), refer to the help file in the Crestron Virtual Control web configuration interface. To access the help file, click the question mark button on the top left of the page.

Enter a VC-4 server URL into the VC-4 Server Address text field to establish a connection between the control system and a VC-4 server.

NOTE: For more information on pairing the device with an Apple® HomeKit® system, refer to support.apple.com/en-us/HT204893.

Turn on the Apple Home Kit toggle to enable the HomeKit feature on the control system.

Click Cloud Settings to enable or disable a connection between the control system and an XiO Cloud® service account.

Settings Tab - Cloud Settings

Turn on the Cloud Configuration Service Connection to allow a connection between control system and an XiO Cloud account. This setting is turned on by default.

For more information on connecting to the XiO Cloud service, refer to Connect to XiO Cloud Service.

Click Auto Update to configure automatic firmware updates for the control system and connected devices.

Settings Tab - Auto Update

NOTE: For more information on configuring automatic updates for the control system, refer to the "Auto Update Mechanism" topic in the 4-Series Control Systems Reference Guide.

The following settings can be configured for the auto update server if Auto Update is turned on:

The following settings can be configured for updating connected Crestron devices if Auto Update is turned on:

The following settings can be configured for scheduling automatic updates if Auto Update is turned on:

Click AV Framework to configure the native .AV Framework software program running on the control system.

Settings Tab - AV Framework

NOTE: If an older version of the .AV Framework program is detected in the Program 01 slot (6.13 and prior), the program is loaded to the Program 00 slot but is not enabled within the control system. The older .AV Framework program must be removed manually before the newer version can be enabled. For more information, refer to the .AV Framework Software for 4-Series Control Systems Operations Guide.

Click the Security tab on the top left of the configuration interface to display selections for configuring security and authentication settings for the control system.

Security Tab Selections

Expand the Security accordion to configure the following settings:

NOTE: For more information about configuring authentication settings on a 4-Series control system, refer to the "Authentication" topic in the 4-Series Control Systems Reference Guide.

Control system users and groups can be viewed and modified within the table provided at the bottom of the accordion. Use the following settings to add, delete, and edit control system users and groups.

Click the Current User tab to view and edit information for the current control system user.

Current User Tab

The following settings are displayed for the current user:

NOTE: A user must be added to an Active Directory group before the user may be selected as an active directory user. For more information, refer to Groups.

Click Change Current User Password to change the password for the current user. The Change Password dialog box is displayed.

Change Password Dialog Box

Enter the existing password in the Current Password field. Then, enter a new password in the Password field, and reenter the password in the Confirm Password field.

Click OK to save the new password, or click Cancel to cancel the change.

Click the Users tab to view and edit information for the control system users.

Users Tab

Enter text into the Search Users field to find and display users that match the search term(s).

Control system users are listed in table format. The following information is displayed for each control system user:

NOTE: A user must be added to an Active Directory group before the user may be selected as an active directory user. For more information, refer to Groups.

If the control system users span multiple pages, use the navigation arrows on the bottom of the page to move forward or backward through the pages, or select a page number to navigate to that page. Additionally, the number of users displayed on each page may be set to 5, 10, or 20 users.

An Actions column is also provided for each user that allows various actions to be performed. The following selections may be selected from the Actions column.

Click the information button in the Actions column to view information for the selected user. The User Details pop-up dialog box is displayed.

User Details Dialog Box

The following settings are displayed for the current user:

Click OK to return to the Authentication Management > Users page.

Click the editing button in the Actions column to edit settings for the selected user. The Update User dialog box is displayed.

Update User Dialog Box

The following Update User settings may be viewed or configured:

NOTE: A user must be added to an Active Directory group to be selected as an Active Directory user.

Click OK to save any changes and to return to the Users selections. Click Cancel to cancel any changes.

Click the trashcan icon in the Actions column to delete the user.

A pop-up dialog box is displayed asking whether the user should be deleted. Click Yes to delete the user or No to cancel.

Click Create User at the bottom of the page to create a new control system user. The Create User dialog box is displayed.

Create User Dialog Box

Use the following settings to create a new user:

NOTE: A user must be added to an Active Directory group to be selected as an Active Directory user.

Click OK to save any changes and to return to the Users selections. Click Cancel to cancel creating a new user.

Click the Groups tab to view and edit settings for control system groups. Control system groups are used to group users by access level and Active Directory authentication settings.

Groups Tab

Enter text in to the Search Groups field to find and display groups that match the search term(s).

Control system groups are listed in table format. The following information is displayed for each control system group:

NOTE: Active Directory provides an additional layer of authentication for control system groups and users. Active directory group and user names are stored in the control system console along with a unique SID (security identifier). When an Active Directory user attempts to authenticate against the console, the console first checks the user credentials. If the Active Directory authentication is successful, Active Directory queries the console for the user or group's SID. The user is granted access to the control system only if at least one SID match is found.

If the control system groups span multiple pages, use the navigation arrows on the bottom of the page to move forward or backward through the pages, or select a page number to navigate to that page. Additionally, the number of groups displayed on each page may be set to 5, 10, or 20 users.

An Actions column is also provided for each group that allows various actions to be performed. The following selections may be selected from the Actions column.

Click the information button in the Actions column to view information for the selected group. The Group Details dialog box is displayed.

Group Details Dialog Box

The following settings are displayed for the current group:

NOTE: If authenticating with Active Directory, do not enter the domain name for the Active Directory group in the Name field. If this information is being entered via console commands, omit domain\local from the command (for example, adddomaing -n:crestron -L:A instead of adddomaing -n:domain.local\crestron -L:A).

Click OK to return to the Groups selections.

Click the trashcan icon in the Actions column to delete the group.

A pop-up dialog box is displayed asking whether the group should be deleted. Click Yes to delete the group or No to cancel.

Click Create Group at the bottom of the page to create a new control system group. The Create Group dialog box is displayed.

Create Group Dialog Box

Use the following settings to create a new group:

Click OK to save any changes and to return to the Groups selections. Click Cancel to cancel creating a new group.

Click the 802.1x Configuration tab on the top left of the configuration interface to display selections for configuring IEEE 802.1x network authentication for control system security.

802.1x Configuration Tab Selections

Expand the 802.1x Configuration accordion to configure the following settings:

NOTE: For more information about configuring 802.1x network authentication on a 4-Series control system, refer to the "802.1X" topic in the 4-Series Control Systems Reference Guide.

Select Manage Certificates from the Action menu to add or remove CAs from the list. The Manage Certificates dialog box is displayed with the Root tab selected.

Manage Certificates Dialog Box - Root Tab

Click the tabs near the top of the page to switch between the different types of CAs (Root, Intermediate, Machine, or Web Server). The same settings are provided for each type of CA.

Type a search term into the Search… text field to search for and display CAs that match the search term.

The following information is provided for each type of CA:

If the CAs span multiple pages, use the navigation arrows on the bottom of the page to move forward or backward through the pages, or select a page number to navigate to that page.

Click the trashcan button in the Actions column for a CA to delete it. A pop-up dialog box is displayed asking if the CA should be deleted. Click Yes to delete the certificate or No to cancel.

Click Add [Type] Certificate to add a CA of one of the four available types (Root, Intermediate, Machine, or Web Server) to the list of CAs. The Add Certificate pop-up dialog box is displayed.

Add Certificate Dialog Box

To add a new certificate:

Click the x button to close the Add Certificate dialog box at any time during the upload process. Clicking the x button before the CA file is uploaded to the control system cancels the upload.

Click the x button to close the Manage Certificates dialog box and to return to the 802.1x Authentication page.