To strengthen the security of your system, you can replace the self-signed certificate on the main server with one issued by a trusted certificate authority (CA). Alternatively, you can import the certificate into the trusted root store of all machines that connect to the Directory.
Before you begin
- Open Genetec™ Server Admin.
- From the Servers list, select your server.
- In the Secure communication section, click Select certificate.
Choose a certificate and click
IMPORTANT: If the selected certificate is not trusted by client machines, users are presented with a dialog box when they attempt to log on, informing them of the untrusted connection and providing the following options:
- Proceed and do not ask again (not recommended)
- Cancel logon
There is also a link to View certificate details to help understand why the certificate is not trusted.
We recommend using a certificate that is trusted by all client machines. If the Invalid certificate warning is unexpected, ensure that you understand why the certificate is not trusted before proceeding.