46 Axis video server - System optionsNotes: •If the referrals feature is enabled and you wish to also allow normal access to the Live Viewpage, the product's own IP address or host name must be added to the list of allowed referrers.•Restricting referrers has no effect on an MPEG-4 video stream. To restrict an MPEG-4 stream, IPaddress filtering must be enabled.•Restricting referrers is of greatest value when not using IP address filtering. If IP address filter-ing is used, then the allowed referrers are automatically restricted to those allowed IPaddresses.HTTPSFor greater security, the Axis video server can be configured to use HTTPS (HypertextTransfer Protocol over SSL (Secure Socket Layer)). That is, all communication that wouldotherwise go via HTTP will instead go via an encrypted HTTPS connection.Certificate - to use HTTPS for communication with the Axis video server, a Certificatemust be created using one of these methods:• A self-signed certificate can be created in the video server, but this does not guar-antee the same level of security as an official certificate.• An official certificate issued by a CA (Certificate Authority). A CA issues andmanages security credentials and public keys for message encryption.1. Click either Create self-signed certificate or Create Certificate Request and enterthe required information in the provided fields2. Click OK.3. Create self-signed certificate generates and installs a certificate which will bedisplayed under Installed Certificate.Create Certificate Request generates a PEM formatted request which you copyand send to a CA for signing. When the signed certificate is returned, click Installsigned certificate... to install the certificate in the Axis video server.4. Set the HTTPS Connection Policy for the administrator, Operator and Viewer toenable HTTPS connection (set to HTTP by default)Please refer to the home page of your preferred CA for information on where to send therequest etc. For more information, please see the online help802.1x - Network Admission ControlIEEE 802.1x is an IEEE standard for port-based Network Admission Control. It providesauthentication to devices attached to a network port (wired or wireless), establishing apoint-to-point connection, or, if authentication fails, preventing access on that port.802.1x is based on EAP (Extensible Authentication Protocol).In a 802.1x enabled network switch, clients equipped with the correct software can beauthenticated and allowed or denied network access at the Ethernet level.