Manafacture: Canon
File size: 10.28 mb
File name:
|
Other manuals for this model:
manual abstract
This item need not be set if [No Authentication] was selected. [IPsec] Setting IPsec [IPsec] Setting IPsec g [SA ESP SPI (inbound)] Set the SA SPI value for inbound. Set a desired value in the range of 256 to 4294967295. Since this setting is used as an ID for identifying the SA, be careful not to specify an inbound SPI whose value is already used in the SPI for other ESP. • If [Security Protocol] was set to [AH] or [ESP and AH]] in 5, Aq [SA AH h [SA AH Authentication Algorithm] to S SPI (inbound)] must be set. A h [SA AH Authentication Algorithm] Set the AH authentication algorithm to [HMAC_SHA1_96] or [HMAC_MD5_96] according to the authentication algorithm supported by the device to connect to. A j [SA AH Authentication Key (outbound)] Set the SA authentication key for outbound. If [HMAC_SHA1_96] or [HMAC_MD5_96] was selected in A h, set a 160-bit or 128-bit hexadecimal, respectively. A k [SA AH SPI (outbound)] Set the SA SPI value for outbound. Set a desired value in the range of 256 to 4294967295. A l [SA AH Authentication Key (inbound)] Set the SA authentication key for inbound. If [HMAC_SHA1_96] or [HMAC_MD5_96] was selected in A h, set a 160-bit or 128-bit hexadecimal, respectively. S q [SA AH SPI (inbound)] Set the SA SPI value for inbound. Set a desired value in the range of 256 to 4294967295. Since this setting is used as an ID for identifying the SA, be careful not to specify an inbound SPI whose value is already used in the SPI for another AH. Important • To run this camera with IPsec, the communicating devices and network must be set beforehand. Contact your System Administrator for these settings. • If any setting is changed from the [IPsec] menu, the camera may become inaccessible from the active web browser. Check beforehand the precautions in “Important” in “[Reboot Item] Setting Items Requiring Rebooting” (P. 5-32). Note If IPsec is used, video transmission performance drops. 5 Setting Page 5-27 [SSL/TLS] Setting HTTP Communication Encryption The following can be set here. • Certificates Create an SSL/TLS certificate. • Certificate Management Manage the SSL/TLS certificate. • Encrypted Communications Set the encypted communication. Certificates 1 [Create Self-Signed Certificate] After entering each of the following settings, click [Exec] to create a self-signed certificate. Follow the instructions in the message and reboot. The certificate created will take effect after rebooting. Note Creating a certificate takes time, so it is recommended that you stop video transmission and upload processes. 2 [Certificate Status] If no certificate is installed, [Not Installed] will appear. If a certificate is installed, [Installed] will appear. 3 [Country (C)] Enter the country code. 4 [State/Province (ST)], [Locality (L)], [Organization (O)], [Organizational Unit (OU)], [Common Name (CN)] Enter state/province name, locality, organization name, organizational unit and common name in ASCII characters (spaces or printable characters). Enter a FQDN format host name, etc. to set the common name (required). 5 [Validity Period Start Date], [Validity Period End Date] Set the validity period of the certificate to be created in the range of 2001/01/01 to 2031/12/31 (required when creating a self-signed certificate). Important With regard to security, it is recommended that you use a self- signed certificate where complete security does not need to be ensured through operation tests, etc. For system operation, acquire and install a certificate issued by a CA. Certificate Management 1 [Generate Certificate Signing Request] Click [Exec] to create server private key and a self- certification authority private key to generate a certificate signing request. Once processed, the certificate signing request will appear in a separate window. Note Generating a certificate signing request takes time, so it is recommended that you stop video transmission and upload processes. 2 [Display Certificate Signing Request Details] Click [Exec] to view the details of the certificate signing request. 3 [Install Server Certificate] Perform this operation to install a server certificate. Click [Browse] to select the certificate file for installation, then click [Exec]. The certificate installed will take effect after rebooting. 4 [Install Intermediate CA Certificate] Perform this operation to install an intermediate CA certificate. Select the certificate file to be installed using the [Browse] button and click [Exec]. The installed certificate will take effect after rebooting. 5 [Delete Certificate] Click [Exec] to delete the certificate. However, if SSL communications are enabled, the certificate cannot be deleted. Set [SSL Communications] to [Disable] before deleting a certificate. The deletion will take effect after rebooting. 6 [Display Server Certificate Details] Click [Exec] to view the details of the certificate. [SSL/TLS] Setting HTTP Communication Encryption [SSL/TLS] Setting HTTP Communication Encryption 8 [Backup] Click [Ex...
Other models in this manual:Security Systems - VB-M40 (10.28 mb)
Security Systems - VB-M600D (10.28 mb)
Security Systems - VB-M600VE (10.28 mb)
- ()