3.When all settings are complete, move the Network Camera to the protected LAN by connecting it to an 802.1x enabled switch. The devices will then start the authentication automatically.

NOTE

The authentication process for 802.1x:

1.The Certificate Authority (CA) provides the required signed certificates to the Network Camera (the supplicant) and the RADIUS Server (the authentication server).

2.A Network Camera requests access to the protected LAN using 802.1X via a switch (the authenticator). The client offers its identity and client certificate, which is then forwarded by the switch to the RADIUS Server, which uses an algorithm to authenticate the Network

Camera and returns an acceptance or rejection back to the switch.

3.The switch also forwards the RADIUS Server’s certificate to the Network Camera.

4.Assuming all certificates are validated, the switch then changes the Network Camera’s state to authorized and is allowed access to the protected network via a pre-configured port.

1

Certificate

2

Certificate Authority

(CA)

1

Certificate

 

4

Network Switch

RADIUS Server

Network Camera

3

 

Protected LAN

52

Page 52
Image 52
Toshiba IK-WD04A user manual Protected LAN