Axis Communications P3384-V user manual Ieee, Certificates, CA Certificate

Page 45

AXIS P3384–V Fixed Dome Network Camera

System Options

2.Select an HTTPS certificate from the list of installed certificates.

3.Optionally, click Ciphers and select the encryption algorithms to use for SSL.

4.Set the HTTPS Connection Policy for the different user groups.

5.Click Save to enable the settings.

To access the Axis product via the desired protocol, enter https:// or http:// in the address field in a browser.

The HTTPS port can be changed on the System Options > Network > TCP/IP > Advanced page.

IEEE 802.1X

IEEE 802.1X is a standard for port-based Network Admission Control providing secure authentication of wired and wireless network devices. IEEE 802.1X is based on EAP (Extensible Authentication Protocol).

To access a network protected by IEEE 802.1X, devices must authenticate themselves. The authentication is performed by a third-party entity called an authentication server, typically a RADIUS server, examples of which are FreeRADIUS and Microsoft Internet Authentication Service.

In Axis' implementation, the network device and the authentication server authenticate themselves with the help of digital certificates using EAP-TLS (Extensible Authentication Protocol - Transport Layer Security). The certificates are provided by an Certification Authority (CA). You need:

a CA certificate to validate the identity of the authentication server

a CA-signed client certificate and a private key to authenticate the network device. To allow the network device to access a network protected by IEEE 802.1X:

1.Obtain a CA certificate, a client certificate and a client private key (contact your network administrator).

2.Go to Setup > System Options > Security > IEEE 802.1X and upload the CA certificate, the client certificate and the client private key.

3.Under Settings, select the EAPOL version, provide your EAP identity and private key password.

4.Check the box to enable IEEE 802.1X and click Save.

Certificates

CA Certificate

Client certificate Client private key

Settings

EAPOL version

EAP identity

Private key password

Enable IEEE 802.1X

The CA certificate is used to validate the identity of the authentication server. Enter the path to the certificate directly, or locate the file using the Browse button. Then click Upload. To remove a certificate, click Remove.

The client certificate and private key are used to authenticate the network device. They can be uploaded as separate files or in one combined file (e.g. a PFX file or a PEM file). Use the Client private key field if uploading one combined file. For each file, enter the path to the file, or locate the file using the Browse button. Then click Upload. To remove a file, click Remove.

Select the EAPOL version (1 or 2) as used in your network switch.

Enter the user identity (maximum 16 characters) associated with your certificate.

Enter the password (maximum 16 characters) for the private key.

Check the box to enable the IEEE 802.1X protocol.

45

Page 44 Page 46
Image 45
Page 44 Page 46
Contents Axis P3384-V Fixed Dome Network Camera Legal Considerations About this DocumentLiability Intellectual Property RightsLearn More SupportAxis P3384-V Fixed Dome Network Camera Table of ContentsConnectors Performance Considerations Reset to Factory Default SettingsNetwork Connector Connectors and ButtonsConnector Hardware OverviewAudio Connector LED IndicatorsSD Card Slot Control ButtonAccess from a Browser Access the ProductAccess from the Internet Set the Root PasswordLive View Set Power Line FrequencyControls on the Live View Click Use HttpsAxis Media Control viewer toolbar Go to Setup EventsManual Trigger To show the manual trigger buttons in the Live ViewAMC Audio Controls PTZ ControlsAxis P3384-V Fixed Dome Network Camera How to Stream H.264 Media StreamsAxis Media Control AMC QuickTimeTM. The following paths can be used Alternative Methods of Accessing the Video StreamJava applet supports simplex audio with G.711 encoding Access Audio StreamsBasic Setup Set Up the ProductVideo and Audio Click Save to apply the new settingsVideo Stream ImageMjpeg Stream ProfilesLightfinder Mode Camera SettingsImage Appearance White BalanceIris adjustment Exposure SettingsShutter & Gain Set Shutter toView Area Select an Aspect ratio and a Video stream resolutionOverlay Go to Video & Audio View AreaPrivacy Mask Overlay ImageGo to Video & Audio Overlay Image When satisfied, click Enable iris to enable the iris Audio SettingsFocus & Zoom Audio ModesAudio Output Audio InputAudio Clips Default Viewer for Browsers Configure the Live ViewViewer Settings Browser Viewer DescriptionUser Defined Links Go to Setup Live View ConfigOutput Buttons For more information about I/O ports, see I/O Ports onPTZ Pan Tilt Zoom Preset PositionsGuard Tour AdvancedControl Queue Operator Same as administrator but with lower priorityCamera Tampering DetectorsMotion Detection Go to Detectors Camera TamperingMotion Detection Parameters Set Up Motion Detection WindowsGo to Detectors Audio Detection Audio DetectionGo to Setup Applications Install ApplicationApplications Application LicensesAxis P3384-V Fixed Dome Network Camera Events Set Up Action RulesTriggers Go to Events Action Rules and click AddHardware Input SignalStorage SystemActions Add RecipientsRecipient Types PTZ ControlSet Up Email Recipients Create SchedulesRecipient Use with action Set Up Recurrences Go to Events Schedules and click AddGo to Events Recurrences and click Add Find Recordings RecordingsPlay Recording Go to Recordings ListRecording List Export Video ClipGo to Recordings Continuous Continuous RecordingLanguages Security System OptionsUsers IP Address FilterIeee CertificatesCA Certificate Click Install certificate and upload the certificate Go to Setup System Options Security CertificatesDate & Time CertificatesNetwork Basic TCP/IP SettingsLinux/Unix syntax Axis Internet Dynamic DNS ServiceLinux/Unix example Axis Video Hosting System AvhsDNS Configuration Advanced TCP/IP SettingsNTP Configuration Host Name ConfigurationNAT traversal port mapping for IPv4 HttpsSocks QoS Quality of ServiceUPnPTM StorageRTP/H.264 BonjourMount and Unmount SD Card Network ShareFormat SD Card To add a network sharePorts & Devices MaintenancePorts Port StatusSupport Overview SupportSystem Overview Logs & ReportsReset to Factory Default Settings Plain ConfigFile Upload Upgrade the Firmware TroubleshootingFirmware To upgrade the product’s firmware Check the FirmwareSymptoms, Possible Causes and Remedial Actions Emergency Recovery ProcedureProblems setting the IP address Product cannot be accessed from a browserProduct is accessible locally but not externally Problems with streaming H.264Basic Video and image problems, general Status and Network indicator LEDs are flashing red rapidlySetup Video & Audio Camera Settings SettingsVideo cannot be recorded Technical Specifications Installation Function/group Specifications Network SecurityMaintenance SupportedPower Function/group Specifications General CasingConnectors DimensionsFunction Pin Specifications ConnectorsPerformance Considerations Audio InputAudio Output M2.13
Top Page Image Contents