Filter
Top Products
AXIS P3363–V Network Camera
System Options
HTTPS
HTTPS (HyperText Transfer Protocol over Secure Socket Layer, or HTTP over SSL) is a web protocol providing encrypted browsing.
HTTPS can also be used by users and clients to verify that the correct device is being accessed. The security level provided by
HTTPS is considered adequate for most commercial exchanges.
The Axis product can be congured to require HTTPS when users from different user groups (administrator, operator, viewer) connect.
To use HTTPS, an HTTPS certicate must rst be installed. Go to System Options > Security > Certicates to install and manage
certicates. See Certicates, on page 43.
To enable HTTPS on the Axis product:
1. Go to System Options > Security > HTTPS
2. Select an HTTPS certicate from the list of installed certicates.
3. Optionally, click Ciphers and select the encryption algorithms to use for SSL.
4. Set the HTTPS Connection Policy for the different user groups.
5. Click Save to enable the settings.
To access the Axis product via the desired protocol, enter https:// or http:// in the address eld in a browser.
The HTTPS port can be changed on the System Options > Network > TCP/IP > Advanced page.
IEEE 802.1X
IEEE 802.1X is a standard for port-based Network Admission Control providing secure authentication of wired and wireless network
devices. IEEE 802.1X is based on EAP (Extensible Authentication Protocol).
To access a network protected by IEEE 802.1X, devices must authenticate themselves. The authentication is performed by a
third-party entity called an authentication server, typically a RADIUS server, examples of which are FreeRADIUS and Microsoft
Internet Authentication Service.
In Axis' implementation, the network device and the authentication server authenticate themselves with the help of digital
certicates using EAP-TLS (Extensible Authentication Protocol - Transport Layer Security). The certicates are provided by an
Certication Authority (CA). You need:
• a CA certicate to validate the identity of the authentication server
• a CA-signed client certicate and a private key to authenticate the network device.
To allow the network device to access a network protected by IEEE 802.1X:
1. Obtain a CA certicate, a client certicate and a client private key (contact your network administrator).
2. Go to Setup > System Options > Security > IEEE 802.1X and upload the CA certicate, the client certicate and the
client private key.
3. Under Settings, select the EAPOL version, provide your EAP identity and private key password.
4. Check the box to enable IEEE 802.1X and click Save.
42