User`s guide

ManualsBrandsEagle Eye ManualsHome building and DecorH.264 NETWORK CAMERA

191

192

193

194

195

196

197

198

199

200

Security

Polycom, Inc. 8–15

The certificate authority (CA) is the trusted entity that issues, or signs, digital

certificates for others, as well as the certificates associated with the CA itself.

You can manage certificates and revocation only through the Polycom HDX

web interface.

Polycom encourages you to check your system logs daily to ensure that your

installed certificates are current.

To go to the web interface:

>> Open a web browser and enter the system’s secure host name or IP

address (for example,

https://10.11.12.13

). Click Yes in the security

dialog boxes that appear.

Working with Certificates

Certificates are authorized externally when they are signed by the CA. The

certificates can be automatically validated when they are used to establish an

authenticated network connection, that is, the certificate is validated when it is

used.

If the HDX system generates a certificate, the certificate is authorized

externally after the CA signs it. Certificates can be automatically validated

when you use them to establish an authenticated network connection.

Therefore, even if a certificate is authorized, it is not considered to be valid

until you use it.

A certificate exchange is between a server and a client, both of which are peers.

When you are using an HDX system, the HDX system is a web server and the

web browser is the client application. In other situations, such as when the

HDX system needs access to LDAP directory services or provisioning, the

system is the client that communicates with the LDAP or provisioning server.

You must restart the HDX system for certificate and revocation changes to take

effect.

To configure certificate usage using the Polycom HDX web interface:

1 Go to Admin Settings > General Settings > Security > Certificates.

2 Configure the following settings on the Certificates screen:

Setting Description

Maximum Peer Certificate

Chain Depth

Specifies how many links a certificate chain

can have. The term peer certificate refers to

any certificate sent by the far-end host to the

HDX system when a network connection is

being established between the two systems.