AXIS 215 PTZ/AXIS 215 PTZ-E - System Options30Certificate - to use HTTPS for communication with the AXIS 215 PTZ/AXIS 215 PTZ-E, a Certificate must becreated using one of the following methods:• A self-signed certificate can be created in the network camera, but this does not guarantee the same levelof security as an official certificate.• An official certificate issued by a CA (Certificate Authority). A CA issues and manages security credentialsand public keys for message encryption.To create a certificate:1. Click either Create self-signed certificate or Create Certificate Request and enter the requiredinformation in the provided fields.2. Click OK.3. Create self-signed certificate generates and installs a certificate which will be displayed under InstalledCertificate.Create Certificate Request generates a PEM formatted request which you copy and send to a CA forsigning. When the signed certificate is returned, click Install signed certificate... to install the certificatein the AXIS 215 PTZ/AXIS 215 PTZ-E.4. Set the HTTPS Connection Policy for the administrator, Operator and Viewer to enable HTTPS connection(set to HTTP by default)Please refer to the home page of your preferred CA for information on where to send the request. For moreinformation, please refer to the online help files802.1X - Network Admission ControlIEEE 802.1X is an IEEE standard for port-based Network Admission Control. It provides authentication todevices attached to a network port (wired or wireless), establishing a point-to-point connection, or, ifauthentication fails, preventing access on that port. 802.1X is based on EAP (Extensible AuthenticationProtocol).In an 802.1X enabled network switch, clients equipped with the correct software can be authenticated andallowed or denied network access at the Ethernet level.Clients and servers in an 802.1X network may need to authenticate each other by some means. In the Axisimplementation this is done with the help of digital certificates provided by a Certification Authority. These arethen validated by a third-party entity, such as a RADIUS server, examples of which are Free Radius andMicrosoft Internet Authentication Service.To perform the authentication, the RADIUS server uses various EAP methods/protocols, of which there aremany. The one used in the Axis implementation is EAP-TLS (EAP-Transport Layer Security).The AXIS network video device presents its certificate to the network switch, which in turn forwards this to theRADIUS server. The RADIUS server validates or rejects the certificate and responds to the switch, and sends itsown certificate to the client for validation. The switch then allows or denies network access accordingly, on apre-configured port.Date & TimeCurrent Server Time - displays the current date and time (24h clock). If this has not been configured, the timedisplayed is the default setting. The time can be displayed in 12h clock format in the Overlay Images (see below).New Server Time - Select your time zone from the drop-down list and check the daylight saving time changes,if desired.