Table of Contents
Advertisement
Note
This camera supports EAP mode in which the supplicant
and the server authenticate using the certificate. This
mode requires a CA to issue the certificate.
Common setting
Enable
Select the checkbox to enable the 802.1X authentication
function.
EAP identity
Type the user name to identify the client in the 802.1X
authentication server up to 250 characters.
EAP password
A supplicant EAP password is needed to be inputted
when PEAP is selected with EAP condition. The
password can contain half-width letters and the length
should be within 50 characters.
Reset
To change the once set EAP password, click Reset and
clear the current password. A new password can be
entered.
Note
After you click Reset, if you wish to cancel the EAP
password change, click Cancel at the bottom of the
screen. This will cancel other changes made to the
settings.
EAP method
You can select the authentication method used with the
authentication server. This device supports TLS and
PEAP.
TLS: By this method, the supplicant and the server
authenticate each other using a certificate. This
enables secure port authentication.
PEAP: By this method, an EAP password is used for the
supplicant authentication and a certificate is used for
server authentication.
Client certificate
When TLS is selected as the EAP method, the client
certificate is imported, displayed or deleted for the
camera authentication.
To import the client certificate
Click Browse... to select the client certificate to be
imported.
Click the OK button appearing on the dialog, and the
selected file will be imported to the camera.
Note
The import process becomes invalid if the selected file is
not a client certificate or the imported client certificate is
not allowed.
To display the information of the client
certificate
When the client certificate has been saved in the camera
correctly, its information appears on Status, Issuer DN,
Subject DN, Validity Period and Extended Key
Usage.
Status
Shows if the status of the client certificate is valid or
invalid.
Valid means the client certificate is correctly stored and
set.
Invalid means the client certificate is not correctly
stored and set.
Possible causes of Invalid are as follows:
– The private key password included in the client
certificate is not specified correctly.
– The private key password is specified in spite of
the fact that the key pair in the client certificate is
not encrypted.
– The key pair is not included in the client certificate.
Note
When the client certificate to be imported is of
PKCS#12 format and the private key password is not set
correctly, "<Put correct private key password>" is
displayed in the boxes of Issuer DN, Subject DN,
Validity Period and Extended Key Usage. Specify the
correct private key password to confirm the information
of the certificate.
To delete the client certificate
Click Delete, and the client certificate stored in the
camera will be deleted.
Private key password
Type the password for the private key information
included in the client certificate using up to 50
characters.
Leave the text box blank if the private key information
included in the client certificate is not encrypted.
If a private key password is already set, it is displayed as
turned letters.
Reset
To change the private key password, click this button.
The current password is cleared and the password text
box is actived to allow new password entry.
Security Menu — Setting the Security
43
Hide quick links:
Advertisement
Table of Contents
