Security Certificates

If your organization has deployed a public key infrastructure (PKI) for securing connections between devices on your network, Polycom recommends that you have a strong understanding of certificate management and how it applies to your EagleEye Director II camera before you integrate it with the PKI.

Cameras can generate requests for certificates (CSRs) that can be sent to a certificate authority (CA) for official issuance. The CA is the trusted entity that issues, or signs, digital certificates for others. Once signed by the CA, you can install the certificate on the camera for use in all TLS connections used by the system.

The cameras support the generation and use of one server certificate in .pem format when used in an environment that has a fully deployed PKI. The camera's web server presents this certificate after receiving connection requests from browsers that attempt to connect to the camera web interface.

For systems deployed in an environment that does not have a fully deployed PKI, you do not need to install these certificates. This is because all systems automatically generate self-signed certificates used to establish secure TLS connections. However, when a full PKI is deployed, self-signed certificates are not trusted by the PKI and signed certificates must be used.