Encrypting the connection to the SharpV web portal using a self-signed certificate (Basic) - Security Center 5.9

Security Center Hardening Guide 5.9

series
Security Center 5.9
revised_modified
2020-11-30

To connect to the SharpV web portal using an HTTPS connection, you must obtain a certificate that is either self-signed or issued by a trusted certificate authority (CA) and install it on the SharpV camera.

What you should know

SharpOS 12.7 GA and later cannot operate without HTTPS and requires the use of a certificate. A self-signed certificate will be automatically created for the unit that did not already had one.

Procedure

To encrypt connection to the SharpV Portal using a self-signed certificate:

  1. Log on to the Sharp Portal.
  2. From the Configuration menu, select the Security page.
  3. From the Certificate section, select + Self-signed.
  4. Enter the required information for the certificate and click OK.
    At a minimum, you must enter a two-letter Country code and you must define the Validity (in years). The other fields are optional.
    NOTE: If you are also using the certificate to connect to the Archiver, the Sharp's common name (Sharp's IP address if connecting to the Archiver) defined in the certificate must be the SharpV IP address, not the SharpV name.
    The message Operation succeeded is displayed and the signing request is added to the certificate list.
  5. Select the Active check box for the certificate.
  6. Click Save and reboot and click OK to confirm the reboot.
    When you log in to the SharpV, the HTTPS connection policy on the Security page displays Active. A lock icon () in the browser's address bar indicates that you are now logged on to the SharpV with a secure connection.
    NOTE: Depending on the browser you are using, you might receive warnings because the certificate is not signed by a trusted certificate authority.

To install the certificate on a workstation:

  1. Click on the certificate to display the Certificate details.
  2. Click Download certificate and save the certificate file as prompted by your browser.
  3. Double-click the certificate.cer file and click Install Certificate.
  4. The Certificate Import Wizard prompts you to select a store location. Select Local Machine and click Next.
  5. The wizard prompts you to select the certificate store you want to use. Select Place all certificates in the following store and click Browse.
  6. From the Select Certificate Store window, select Trusted root certification Authorities and click OK.
  7. Click Next to continue, and click Finish to close the Certificate Import Wizard.
    The system displays the message "The import was successful."

    If you see a warning indicating that there is a problem with the website's security certificate, note that for the certificate to be properly registered, you must be logged on as an Administrator on the machine where you want to register the certificate.

  8. Close all web browsers and open the Windows Task Manager to ensure that no browser processes are running in the background.
  9. Log on to the Sharp Portal. You are automatically logged on in HTTPS mode.
    A lock icon () in the browser's address bar indicates that you are now logged on to the SharpV with a secure connection.