Sony CH240 Security Camera User Manual


 
Administrating the Camera
Using the 802.1X Authentication Function — 802.1X Menu
63
Supplicant
A supplicant is a device that connects to the
authentication server to join the network. This camera
serves as a supplicant in the 802.1X network. The
supplicant can enter the 802.1X network after
appropriate authentication by the authentication server.
Authenticator
An authenticator forwards certificate request data or
response data that the supplicant or authentication server
issues to the other party. Normally a hub, router or
access point serves as an authenticator.
Authentication server
An authentication server has a database of connecting
users and verifies if the supplicant is a valid user or not.
It can also be called RADIUS server.
CA (Certificate Authority)
A CA issues and manages certificates of the
authentication server (CA certificates) and user
certificates. The CA is essential for certificate-based
user authentication. Normally a CA is located inside an
authentication server.
Note
This camera supports EAP mode in which the supplicant
and the server authenticate using the certificate. This
mode requires a CA to issue the certificate.
Common Tab — Basic setting of
802.1X authentication function
802.1X authentication function
This item is used for enabling/disabling the 802.1X
authentication function for wired ports. The wired
interface status and the wireless interface status can also
be checked here.
Note
To use the 802.1X authentication function for wireless
networks, set up Security in the Wireless tab of the
Network menu. For details, see “Security” on page 52.
Wired interface
To activate the 802.1X authentication function for wired
ports, select On.
Wired interface status
Shows the authentication status of the 802.1X
authentication function for wired ports.
Click Refresh to update the status.
Wireless interface status (SNC-CH240/CH140/
CH180/CH280 only)
Shows the authentication status of the 802.1X
authentication function for wireless networks.
Click Refresh to update the status.
EAP identity
Type the user name to identify the client in the 802.1X
authentication server using 3 to 253 characters.
EAP password
A supplicant EAP password is needed to be inputted
when PEAP is selected with EAP condition. The
password can contain half-width letters and the length
should be between 1 to 50.
Reset
To change the once set EAP password, click Reset and
clear the current password. A new password can be
entered.
Note
After you click Reset, if you wish to cancel the EAP
password change, click Cancel at the bottom of the
screen. This will cancel other changes made to the
settings.
EAP method
You can select the authentication method used with the
authentication server. This device supports TLS and
PEAP.
TLS: By this method, the supplicant and the server
authenticate each other using a certificate. This
enables secure port authentication.
PEAP: By this method, an EAP password is used for the
supplicant authentication and a certificate is used for
server authentication.
OK/Cancel
See “Buttons common to every menu” on page 32.