Setting up a cryptographic key for digital signatures - Security Center 5.11

Security Center Hardening Guide 5.11

Applies to
Security Center 5.11
Last updated
2022-10-12
Content type
Guides > Administrator guides
Language
English (United States)
Product
Security Center
Version
5.11

A cryptographic key for digital signatures is generated automatically. If required, you can generate your own key and set the Archiver and the Auxiliary Archiver to use it.

Procedure

  1. In the Security Center installation folder, run DigitalSignatureKeyGenerator.exe.
    The program generates two 1 KB files named fingerprintEddsa.bin and privateEddsa.bin and saves them in the installation folder. The first file contains a random 20 B fingerprint, and the second file contains a cryptographic signature key. These two files will be different every time the program is executed.
  2. In Config Tool, open the System task, and click the Roles view.
  3. Select each archiving role that uses digital signatures, and restart it.
  4. If you have a secondary server assigned to an archiving role, copy the same cryptographic files to the Security Center installation folder on that server.

Results

The next time an Archiver or Auxiliary Archiver with Digital signature enabled records video to disk, the video files are digitally signed using the new cryptographic key.