You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I recently was tasked with deploying certificates to Axis cameras. Normally, when managed by its vendor-provided software, this process is already automated. The software seems to setup its own private CA and auto-deploy & renew certificates on cameras, while also trusting them on the management computer.
Why & how
I want to cut them off the free (but proprietary & windows-only) AXIS Device Manager. Cameras have a pretty robust and well-documented REST API called "VAPIX". I found the following example under "Upload a certificate with private key", replicated below in case the link changes:
Since different versions of the software support different parameters, I need to ensure some error-fallback. For example, older versions don't support ECC certs while newer ones will refuse ones with small RSA key.
Looking through the repo I found a Ruckus deployment hook that seems to solve the same set of problems:
Would that be a good base for adding support for Axis cameras?
Should I force the alias parametr to a common name?
Is uploading cert+key every time a recommended method, or should I handle the scenario of renewal without key change? The vendor API seems to have a PATCH support where only certificate is renewed but key doesn't change.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Uh oh!
There was an error while loading. Please reload this page.
-
Hi,
What I want to do
I recently was tasked with deploying certificates to Axis cameras. Normally, when managed by its vendor-provided software, this process is already automated. The software seems to setup its own private CA and auto-deploy & renew certificates on cameras, while also trusting them on the management computer.
Why & how
I want to cut them off the free (but proprietary & windows-only) AXIS Device Manager. Cameras have a pretty robust and well-documented REST API called "VAPIX". I found the following example under "Upload a certificate with private key", replicated below in case the link changes:
I need some guidance
Since different versions of the software support different parameters, I need to ensure some error-fallback. For example, older versions don't support ECC certs while newer ones will refuse ones with small RSA key.
Looking through the repo I found a Ruckus deployment hook that seems to solve the same set of problems:
aliasparametr to a common name?PATCHsupport where only certificate is renewed but key doesn't change.acme.shalready?Beta Was this translation helpful? Give feedback.
All reactions