Configuring secure recorder communication for IPC Unigy

Unigy authenticates the recorder service via TLS, ie. the recorder service must provide a certificate trusted by Unigy at TLS handshake. This step describes how Unigy can sign a certificate request, so how to create the required certificate.

Step 1 - Create a Certificate Signing Request. 

 Certificate's CN/Subject must be the IP of the recorder

The following command can be used to generate the CSR with OpenSSL

openssl req -new -newkey rsa:2048 -nodes -out c:\verba_ipc.csr -keyout c:\verba_ipc.key -subj "/C=US/ST=/L=/O=/CN=10.7.0.8"


Step 2 - 
Post the CSR to Unigy and download the signed certificate by clicking on Generate signed certificate (Enterprise\Security\PKI\Device Certificates, 3rd party Integration tab)