Axis Communications P3384VE user manual Ieee, Certificates, CA Certificate

Page 47

AXIS P3384–VE Fixed Dome

System Options

2.Select an HTTPS certificate from the list of installed certificates.

3.Optionally, click Ciphers and select the encryption algorithms to use for SSL.

4.Set the HTTPS Connection Policy for the different user groups.

5.Click Save to enable the settings.

To access the Axis product via the desired protocol, enter https:// or http:// in the address field in a browser.

The HTTPS port can be changed on the System Options > Network > TCP/IP > Advanced page.

IEEE 802.1X

IEEE 802.1X is a standard for port-based Network Admission Control providing secure authentication of wired and wireless network devices. IEEE 802.1X is based on EAP (Extensible Authentication Protocol).

To access a network protected by IEEE 802.1X, devices must authenticate themselves. The authentication is performed by a third-party entity called an authentication server, typically a RADIUS server, examples of which are FreeRADIUS and Microsoft Internet Authentication Service.

In Axis' implementation, the network device and the authentication server authenticate themselves with the help of digital certificates using EAP-TLS (Extensible Authentication Protocol - Transport Layer Security). The certificates are provided by an Certification Authority (CA). You need:

a CA certificate to validate the identity of the authentication server

a CA-signed client certificate and a private key to authenticate the network device. To allow the network device to access a network protected by IEEE 802.1X:

1.Obtain a CA certificate, a client certificate and a client private key (contact your network administrator).

2.Go to Setup > System Options > Security > IEEE 802.1X and upload the CA certificate, the client certificate and the client private key.

3.Under Settings, select the EAPOL version, provide your EAP identity and private key password.

4.Check the box to enable IEEE 802.1X and click Save.

Certificates

CA Certificate

Client certificate Client private key

Settings

EAPOL version

EAP identity

Private key password

Enable IEEE 802.1X

The CA certificate is used to validate the identity of the authentication server. Enter the path to the certificate directly, or locate the file using the Browse button. Then click Upload. To remove a certificate, click Remove.

The client certificate and private key are used to authenticate the network device. They can be uploaded as separate files or in one combined file (e.g. a PFX file or a PEM file). Use the Client private key field if uploading one combined file. For each file, enter the path to the file, or locate the file using the Browse button. Then click Upload. To remove a file, click Remove.

Select the EAPOL version (1 or 2) as used in your network switch.

Enter the user identity (maximum 16 characters) associated with your certificate.

Enter the password (maximum 16 characters) for the private key.

Check the box to enable the IEEE 802.1X protocol.

47

Page 46 Page 48
Image 47
Page 46 Page 48
Contents Axis P3384-VE Fixed Dome Intellectual Property Rights About this DocumentLegal Considerations LiabilityLearn More SupportAxis P3384-VE Fixed Dome Table of ContentsConnectors Performance Considerations Advanced Reset to Factory Default SettingsHardware Overview Connectors and Buttons Color Indication LED IndicatorsSet the Root Password Access the ProductAccess from a Browser Access from the InternetClick Use Https Set Power Line FrequencyLive View Controls on the Live ViewTo show the manual trigger buttons in the Live View Go to Setup EventsAxis Media Control viewer toolbar Manual TriggerAMC Audio Controls PTZ ControlsAxis P3384-VE Fixed Dome Axis Media Control AMC How to Stream H.264Media Streams QuickTimeTM. The following paths can be used Alternative Methods of Accessing the Video StreamJava applet supports simplex audio with G.711 encoding Access Audio StreamsBasic Setup Set Up the ProductImage Click Save to apply the new settingsVideo and Audio Video StreamMjpeg Stream ProfilesWhite Balance Camera SettingsLightfinder Mode Image AppearanceSet Shutter to Exposure SettingsIris adjustment Shutter & GainGo to Video & Audio View Area Select an Aspect ratio and a Video stream resolutionView Area OverlayGo to Video & Audio Overlay Image Privacy MaskOverlay Image Audio Modes Audio SettingsWhen satisfied, click Enable iris to enable the iris Focus & ZoomAudio Input Audio Output Audio ClipsBrowser Viewer Description Configure the Live ViewDefault Viewer for Browsers Viewer SettingsFor more information about I/O ports, see I/O Ports on Go to Setup Live View ConfigUser Defined Links Output ButtonsAdvanced Preset PositionsPTZ Pan Tilt Zoom Guard TourControl Queue Operator Same as administrator but with lower priorityGo to Detectors Camera Tampering DetectorsCamera Tampering Motion DetectionMotion Detection Parameters Set Up Motion Detection WindowsGo to Detectors Audio Detection Audio DetectionApplication Licenses Install ApplicationGo to Setup Applications ApplicationsAxis P3384-VE Fixed Dome For more information, see the online help Set Up Action RulesEvents Go to Events Action Rules and click AddHardware TriggersDetectors Actions Recipient Use with action Add RecipientsRecipient Types Go to Events Recipients and click AddGo to Events Schedules and click Add Set Up RecurrencesSet Up Email Recipients Create SchedulesAxis P3384-VE Fixed Dome Go to Recordings List RecordingsFind Recordings Play RecordingRecording List Export Video ClipGo to Recordings Continuous Continuous RecordingLanguages IP Address Filter System OptionsSecurity UsersCA Certificate IeeeCertificates Certificates Go to Setup System Options Security CertificatesClick Install certificate and upload the certificate Date & TimeNetwork Basic TCP/IP SettingsAxis Video Hosting System Avhs Axis Internet Dynamic DNS ServiceLinux/Unix syntax Linux/Unix exampleHost Name Configuration Advanced TCP/IP SettingsDNS Configuration NTP ConfigurationNAT traversal port mapping for IPv4 HttpsSocks QoS Quality of ServiceBonjour StorageUPnPTM RTP/H.264To add a network share Network ShareMount and Unmount SD Card Format SD CardPort Status MaintenancePorts & Devices PortsLogs & Reports SupportSupport Overview System OverviewFile Upload Reset to Factory Default SettingsPlain Config Check the Firmware TroubleshootingUpgrade the Firmware Firmware To upgrade the product’s firmwareProduct cannot be accessed from a browser Emergency Recovery ProcedureSymptoms, Possible Causes and Remedial Actions Problems setting the IP addressBasic Product is accessible locally but not externallyProblems with streaming H.264 Settings Status and Network indicator LEDs are flashing red rapidlyVideo and image problems, general Setup Video & Audio Camera SettingsVideo cannot be recorded Technical Specifications Supported Function/group Specifications Network SecurityInstallation MaintenanceDimensions Function/group Specifications General CasingPower ConnectorsFunction Pin Specifications ConnectorsAudio Output Performance ConsiderationsAudio Input M3.11
Top Page Image Contents