Loading ...
Loading ...
Loading ...
AXIS 215 PTZ/AXIS 215 PTZ-E - System Options
30
Certificate - to use HTTPS for communication with the AXIS 215 PTZ/AXIS 215 PTZ-E, a Certificate must be
created using one of the following methods:
• A self-signed certificate can be created in the network camera, but this does not guarantee the same level
of security as an official certificate.
• An official certificate issued by a CA (Certificate Authority). A CA issues and manages security credentials
and public keys for message encryption.
To create a certificate:
1. Click either Create self-signed certificate or Create Certificate Request and enter the required
information in the provided fields.
2. Click OK.
3. Create self-signed certificate generates and installs a certificate which will be displayed under Installed
Certificate.
Create Certificate Request generates a PEM formatted request which you copy and send to a CA for
signing. When the signed certificate is returned, click Install signed certificate... to install the certificate
in the AXIS 215 PTZ/AXIS 215 PTZ-E.
4. Set the HTTPS Connection Policy for the administrator, Operator and Viewer to enable HTTPS connection
(set to HTTP by default)
Please refer to the home page of your preferred CA for information on where to send the request. For more
information, please refer to the online help files
802.1X - Network Admission Control
IEEE 802.1X is an IEEE standard for port-based Network Admission Control. It provides authentication to
devices attached to a network port (wired or wireless), establishing a point-to-point connection, or, if
authentication fails, preventing access on that port. 802.1X is based on EAP (Extensible Authentication
Protocol).
In an 802.1X enabled network switch, clients equipped with the correct software can be authenticated and
allowed or denied network access at the Ethernet level.
Clients and servers in an 802.1X network may need to authenticate each other by some means. In the Axis
implementation this is done with the help of digital certificates provided by a Certification Authority. These are
then validated by a third-party entity, such as a RADIUS server, examples of which are Free Radius and
Microsoft Internet Authentication Service.
To perform the authentication, the RADIUS server uses various EAP methods/protocols, of which there are
many. The one used in the Axis implementation is EAP-TLS (EAP-Transport Layer Security).
The AXIS network video device presents its certificate to the network switch, which in turn forwards this to the
RADIUS server. The RADIUS server validates or rejects the certificate and responds to the switch, and sends its
own certificate to the client for validation. The switch then allows or denies network access accordingly, on a
pre-configured port.
Date & Time
Current Server Time - displays the current date and time (24h clock). If this has not been configured, the time
displayed is the default setting. The time can be displayed in 12h clock format in the Overlay Images (see below).
New Server Time - Select your time zone from the drop-down list and check the daylight saving time changes,
if desired.
Loading ...
Loading ...
Loading ...