Display, Ncast presentation recorder reference manual – NCast PR-HD User Manual

NCast Presentation Recorder Reference Manual

7.4.1. HTTP/HTTPS Access

Normal web access, which is unprotected and insecure, is accomplished through use of the HTTP protocol
typically utilizing port 80. Secure access using HTTPS (the SSL protocol) utilizes port 443. Administration of
the Presentation Recorder in open and insecure networks without the use of HTTPS presents a security risk
and should be avoided.

The Web Control page allows three different options related to Viewer and Administrative access.

•

All HTTP – Utilizes HTTP for Viewer and Administrative access.

•

Viewer HTTP/Admin HTTPS – Utilizes HTTPS for Administrative access

•

All HTTPS – Viewers and Administrators must use HTTPS

The downside of using HTTPS is that SSL Certificates (which usually require an annual fee or license
payment) are required for each Presentation Recorder unit. Non-authoritative certificates may be used, but
Viewers will see ominous warning notices in their browsers about the certificate, asking the user to accept
the validity of the connection. Also, client players such as Quicktime, which need to download .sdp files using
HTTPS protocol, may not function correctly if the certificate is not valid. Consult with your network
administrator about certificate availability for your organization.

Access using HTTPS is straightforward. Simply use the “https” prefix:

https://pr-hd.ncast.com

This will automatically direct the request to port 443, the standard for HTTPS access.

7.4.2. Upload Certificate & Private Key

If an organization has purchased an official SSL Certificate, or has created a non-authoritative one (which
can be done with many different SSL tools) this new certificate may be uploaded and installed on the Web
Control page.

When HTTPS is turned on, the Apache server requires that the certificate be authenticated with a password.
Since this is not possible inside the Presentation Recorder, a private RSA key may be used instead of a
password. If there is not a valid private RSA key available, then Apache will not start. This is used to disable
third parties launching HTTPS with stolen certificates. More information on this topic is at
http://www.apache.org. The pass-phrase should be removed from the private key before upload.

7.4.3. Admin password

The Admin password grants rights to all configuration and setup options for the Presentation Recorder. This
password should be chosen carefully and with security in mind. Avoid use of common names, dictionary
words and the like. A randomly chosen string greater than 8 characters in length is suggested.

7.4.4. Coordinator password

The Coordinator password allows access to the Archive files.

7.4.5. Verify user password

Viewer/user passwords are not currently in use with this release.

7.5. D

ISPLAY

The Display settings control activity relative to the local display attached to the Presentation Recorder. If
activated this display normally loops back the graphics or video signals selected on the input connectors
(after digitization of the signal). The displayed material shows the final-form composition of what will be
compressed and recorded (except for the audio-meter or OSD, if present). Also, if graphic overlays are being
used, these will appear on the local loopback display.

NCast Corporation

Revision 2.2

Page 64