Axis Communications 231D+/232D+ user manual Https, 802.1X Network Admission Control

Page 37

AXIS 231D+/232D+ - System Options 37

Notes: • If the referrals feature is enabled and you wish to also allow normal access to the Live View page, the product's own IP address or host name must be added to the list of allowed referrers.

Restricting referrers has no effect on an MPEG-4 video stream. To restrict an MPEG-4 stream, IP address filtering must be enabled.

Restricting referrers is of greatest value when not using IP address filtering. If IP address filtering is used, then the allowed referrers are automatically restricted to those allowed IP addresses.

HTTPS

For greater security, the AXIS 231D+/232D+ can be configured to use HTTPS (Hypertext Transfer Protocol over SSL (Secure Socket Layer)). That is, all communication that would otherwise go via HTTP will instead go via an encrypted HTTPS connection.

Certificate - to use HTTPS for communication with the AXIS 231D+/232D+, a Certificate must be created using one of the following methods:

A self-signed certificate can be created in the network camera, but this does not guar- antee the same level of security as an official certificate.

An official certificate issued by a CA (Certificate Authority). A CA issues and manages security credentials and public keys for message encryption.

1.Click either Create self-signed certificate or Create Certificate Request and enter the required information in the provided fields.

2.Click OK.

3.Create self-signed certificate generates and installs a certificate which will be displayed under Installed Certificate.

Create Certificate Request generates a PEM formatted request which you copy and send to a CA for signing. When the signed certificate is returned, click Install signed certificate... to install the certificate in the AXIS 231D+/232D+.

4.Set the HTTPS Connection Policy for the administrator, Operator and Viewer to enable HTTPS connection (set to HTTP by default)

Please refer to the home page of your preferred CA for information on where to send the request etc. For more information, please refer to the online help files

802.1X - Network Admission Control

IEEE 802.1X is an IEEE standard for port-based Network Admission Control. It provides authentication to devices attached to a network port (wired or wireless), establishing a point-to-point connection, or, if authentication fails, preventing access on that port. 802.1X is based on EAP (Extensible Authentication Protocol).

In a 802.1X enabled network switch, clients equipped with the correct software can be authenticated and allowed or denied network access at the Ethernet level.

Image 37
Contents Axis 231D+/232D+ Network Dome Camera User’s Manual Intellectual Property Rights Legal Considerations About This DocumentSafety Notice Battery Replacement Table of contents Axis 231D+/232D+ Axis 232D+ Axis 231D+/232D+Hardware Description Accessing the Axis 231D+/232D+ Using the Network Dome CameraAxis 231D+/232D+ Using the Network Dome Camera Pan/Tilt/Zoom Controls Area ZoomAxis 295 Video Surveillance Joystick Pan/Tilt/Zoom Control QueueStream Types Video StreamsMotion Jpeg MPEG-4 protocols and communication methods RTP/RTSP/HTTP or RTP/RTSP/HTTPS How to stream MPEG-4Axis Media Control Other methods of accessing the video streamOther MPEG-4 clients Accessing the Setup Tools Configuring the Network Dome CameraOverview of the Setup Tools Image Settings Video & Image SettingsVideo Stream Overlay SettingsAdvanced Camera Settings Overlay Image SettingsGo to Setup Video & Image Overlay Image MPEG-4 Settings Customizing the default Live View ConfigLayout Upload Own Web FilesUser Defined Links Own HomeView Check Show Custom LinkDefault Viewer Default Video FormatAction Buttons Output ButtonsUpdate Viewer SettingsHtml Examples External VideoPan Tilt Zoom Controls Sequence ModeClick-in-image PTZ controlsFocus and Iris Controls Using CGI links to control PTZ devices Preset PositionsPTZ Control Queue Preset Positions Dome ConfigurationGuard Tour Control Queue AdvancedLimits Ctrl PanelEvent Servers Event ConfigurationEvent Types How to set up a triggered eventTriggered Event Click Add triggered on the Event typesPre-trigger and Post-trigger buffers Scheduled Event How to set up a scheduled eventClick Add scheduled on the Event types Motion detection How to configure Motion DetectionHistory Sensitivity Port StatusSecurity System OptionsUsers IP Address Filtering802.1X Network Admission Control HttpsAxis 231D+/232D+ System Options CA servers Authentication processDate & Time IP Address Configuration Network Basic TCP/IP SettingsServices DNS Configuration Network Advanced TCP/IP SettingsNTP Configuration Host Name ConfigurationNAT Traversal HttpNetwork Traffic RtspQoS Settings Network QoS Quality of serviceSmtp email UPnP Network SnmpRTP Multicast/ MPEG-4 Network BonjourSupport MaintenanceSupport Overview System OverviewConfiguration Resetting to Factory Default SettingsAbout Using the Control Button Connection Module Pinout Connection ModuleSchematic Diagram Axis 231D+/232D+ I/O connectors and power Checking the Firmware TroubleshootingUpdating the Firmware Emergency Recovery Procedure Using ARP Ping Symptoms, Possible Causes and Remedial ActionsVideo Image Problems Models Technical SpecificationsAlarm and event Video management Optimizing your system General performance considerationsFrame rates MPEG-4 Frame rates Motion JpegBandwidth Axis 231D+/232D+ Technical Specifications Glossary of Terms Compression See Image Compression Half-duplex See Full-duplex Axis 231D+/232D+ Glossary of Terms Axis 231D+/232D+ Glossary of Terms URL Uniform Resource Locator An address on the network Axis 231D+/232D+ Glossary of Terms Index Smtp