Manualshelf

User`s guide

ManualsBrandsEagle Eye ManualsHome building and DecorH.264 NETWORK CAMERA
191192193194195196197198199200
Administrator’s Guide for Polycom HDX Systems
8–18 Polycom, Inc.
Verifying Certificate Validity
When certificate validation is enabled (refer to page Working with Certificates
on page 8-15), the HDX system tries to validate the peer certificate chain on
secure connection attempts for the applicable network services.
The Always Validate Peer Certificates from Browsers setting controls how
the HDX web server behaves. Enabling this setting has an effect only if
Security Mode is also enabled on the HDX system, because if Security Mode is
not enabled, browsers can connect to the HDX web server through an
unsecured IP address. If you don’t use a secure address (HTTPS), certificates
are not exchanged. With validation enabled, the HDX web server rejects
connection attempts from browsers that don't present a valid certificate.
The Always Validate Peer Certificates from Servers setting controls how all
of the other SSL-enabled applications on HDX system, such as LDAP or
provisioning behave. When this setting is enabled, these applications attempt
to validate the server certificate when they connect via SSL/TLS to a server.
The connection will be rejected if the server does not present a valid certificate.
Validation might fail for other reasons, such as certificate expiration or
revocation. The HDX system can check revocation status by using certificate
revocation lists (CRLs) or the online certificate status protocol (OCSP). A CRL
is a list of certificates that have been revoked by the CA. An OCSP responder
is a network server that provides real-time certificate status through a
query/response message exchange.
Organizational Unit (OU) Specifies the unit of business defined by your
organization.
Organization (O) Specifies your organization’s name.
City or Locality (L) Specifies the city where your organization is
located.
State or Province (ST) Specifies the state or province where your
organization is located.
Country (C) Displays the country selected in Admin Settings >
General Settings > Location.
Setting Description
The HDX system supports only one OU field. If you want the signed certificate to
include more than one OU field, you must download and edit the CSR manually.