User Manual
Siveillance Video 2019 R3
119
SI SSP SH LPS COS Video
A CA issues digital certificates. A CA acts as a trusted third-party, trusted by both the subject/owner
(recording server) and by the party that verify the certificate (clients). The recording server has the
private key and the clients have the public key.
The public CA certificate must be trusted on all client computers. In this way the clients verify the
validity of the certificates issued by the CA.
The private CA certificate issues private server authentication certificates to the recording servers.
The private recording server certificates are installed on each recording server in the Windows
Certificate Store.
On a Windows operating system, trusting the certificate means that the public certificate must be
imported and appear in the Trusted Root Certification Authorities in the Windows Certificate Store.
When you renew a certificate with the same subject name and add it to the Windows Certificate Store,
the recording server will automatically pick up the new certificate. This makes it easier to renew
certificates for many recording servers without having to re-select the certificate for each recording
server and without restarting the Recording Server service.
Multicast streams are not encrypted, even if the recording server uses encryption.
In a system that runs secure communication, do expect that performance will decrease.
If you plan to enable encryption during installation, start by getting hold of the certificate and installing
it on all relevant computers.