Encrypting connection to the SharpOS 12.6 Portal using a signed certificate - SharpV | SharpOS 12.6

AutoVu Handbook for SharpV Fixed Installations 12.6

Applies to
SharpV | SharpOS 12.6
Last updated
2019-03-27
Content type
Guides
Guides > User guides
Language
English (United States)
Product
SharpV
Version
12.6

You can secure the SharpV Portal connection by configuring the camera in secure HTTP mode (HTTPS) using a certificate that has been signed by a trusted certificate authority.

Before you begin

  • Read about why the connection to the SharpV Portal should be encrypted.
    IMPORTANT:
    • If a certificate signature is issued by a certificate authority (CA) that is not included in the list of Windows of third-party root certificate authorities, or if your organization has its own public key infrastructure (PKI) which manages signatures, you must add the CA to the platform software running on the SharpV using the instructions in the Knowledge Base article KBA-78971.
    • If your Security Center version is 5.3 SR3 or higher, if you want to add the SharpV to the Archiver using HTTPS, you must modify the Archiver's HTTPS options using the instructions in the Knowledge Base article KBA01405.
  • If you are adding the SharpV to the Archiver using HTTPS, configure the camera's network configuration to use a static IP address before you install a certificate.

What you should know

  • The first time you log on to the SharpV Portal, the system logs you on using HTTP mode (no certificate). Your organization's security policy might require that you configure either a self-signed certificate or a signed certificate from a trusted certificate authority.
  • You must install the certificate on all machines that communicate with the SharpV camera, which includes the LPR Manager, the Archiver, and all machines that connect to the web portal
  • You can install multiple certificates and then select a certificate to activate.
    IMPORTANT: If the current certificate is a signed certificate, deleting the certificate signing request prevents the certificate from being reinstalled.

Procedure

  1. Log on to the SharpV Portal as an Administrator.
  2. From the Configuration menu, select the Security page.
  3. Click + Signing request.
  4. Enter the required information for the certificate signing request and click OK.
    NOTE:
    • The "Country" field requires a two-letter country code.
    • If you are also using the certificate to connect to the Archiver, the Server name defined in the certificate must be the SharpV IP address, not the SharpV name.
    The message Operation succeeded is displayed and the signing request is added to the certificate list with not signed displayed for the Issuer.
  5. Click on the certificate to display the Certificate details.
  6. Click Copy to clipboard.
  7. Send the certificate signing request to a certificate authority.
    IMPORTANT: Do not delete the signing request if it has been used to request a certificate.

    You will receive an SSL certificate signed by the certificate authority.

  8. In the Certificate Details window, click Install signed certificate then browse to the certificate location and click Open.
  9. Click Save.
    The system displays the message "Installed signed certificate... successful".
  10. Refresh the browser (F5).
    The certificate is displayed in the Certificate list.
  11. Select the Active check box for the certificate and click Save and Reboot.

Results

When the system comes back online, notice that the URL displays that you are in HTTPS mode. A lock icon () in the browser's address bar indicates that you are now logged on to the SharpV with a secure connection.

After you finish

As a best practice, change your password after configuring the SharpV for HTTPS communication.