Axis Q3527-LVE User Manual page 36

AXIS Q3527-LVE Network Camera
The web interface
-
-
-
-
-
Note
All Axis Video MIB traps are enabled when you turn on SNMP v1 and v2c traps. For more information, see
AXIS OS Portal > SNMP.
• v3: SNMP v3 is a more secure version, which provides encryption and secure passwords. To use SNMP v3, we
recommend you to activate HTTPS, as the password is then sent through HTTPS. This also prevents unauthorized
parties' access to unencrypted SNMP v1 and v2c traps. If you use SNMP v3, you can set up traps through the SNMP v3
management application.
-
Security
Certificates
Certificates are used to authenticate devices on a network. The device supports two types of certificates:
• Client/server certificates
A client/server certificate validates the device's identity, and can be self-signed or issued by a Certificate Authority (CA).
A self-signed certificate offers limited protection and can be used before a CA-issued certificate has been obtained.
• CA certificates
You can use a CA certificate to authenticate a peer certificate, for example to validate the identity of an authentication
server when the device connects to a network protected by IEEE 802.1X. The device has several pre-installed CA
certificates.
These formats are supported:
• Certificate formats: .PEM, .CER, and .PFX
• Private key formats: PKCS#1 and PKCS#12
Important
If you reset the device to factory default, all certificates are deleted. Any pre-installed CA certificates are reinstalled.
Filter the certificates in the list.
Add certificate : Click to add a certificate.
The context menu contains:
• Certificate information: View an installed certificate's properties.
• Delete certificate: Delete the certificate.
• Create certificate signing request: Create a certificate signing request to send to a registration authority to apply
for a digital identity certificate.
Secure keystore :
• Secure element (CC EAL6+): Select to use secure element for secure keystore.
• Trusted Platform Module 2.0 (CC EAL4+, FIPS 140-2 Level 2): Select to use TPM 2.0 for secure keystore.
IEEE 802.1x
Traps:
Cold start: Sends a trap message when the device starts.
Warm start: Sends a trap message when you change an SNMP setting.
Link up: Sends a trap message when a link changes from down to up.
Authentication failed: Sends a trap message when an authentication attempt fails.
Password for the account "initial": Enter the SNMP password for the account named "initial". Although the
password can be sent without activating HTTPS, we don't recommend it. The SNMP v3 password can only
be set once, and preferably only when HTTPS is enabled. Once the password is set, the password field is no
longer displayed. To set the password again, you must reset the device to factory default settings.
36