Configure HTTPS

You can configure Pearl-2 to use HTTPS for secure, local network access to the Admin panel, as well as for viewing the live channel preview stream on the local network using the Live broadcast URL.

The default HTTP port 80 redirects traffic to the default HTTPS port 443 when HTTPS is enabled. If the default ports used by Pearl-2 are not available on your network, you can change them using the Admin panel, see Change the HTTP/HTTPS port values.

Custom applications that use the Pearl-2 HTTP API should continue to work if you configure Pearl-2 for HTTPS.

A default, self-signed certificate from Epiphan Video comes preloaded on Pearl-2. You can upload and delete your own certificate and private key. However, you cannot delete the default self-signed certificate that comes preloaded onPearl-2.

If you upload your own self-signed certificate and private key, ensure they're PEM encoded. Certificates can either include the private key or be separate files.

If you attempt to access the web-based Admin panel using a web browser and the required security certificate isn't found in the list of certificates loaded on Pearl-2, a warning message appears stating that the device isn't trusted. You can choose whether to proceed and connect to Pearl-2's web-based Admin panel without the security certificate authentication or cancel the connection.

If the Epiphan Video self-signed certificate is selected, your web browser may warn of an untrusted certificate when you try to access Pearl's web-based Admin panel. You can dismiss the warning and continue to the Admin panel for your device.

Configure HTTPS and upload a self-signed certificate using the Admin panel

  1. Login to the Admin panel as admin, see Connect to Admin panel.
  1. From the Configuration menu, select Security. The Security configuration page opens.
  2. Under HTTPS configuration, check Secure connection (HTTPS).

  1. (Optional) Change the default HTTP and the HTTPS port numbers. Consult your network administrator.
  2. (Optional) Upload a new certificate and private key as required. You can request those from your network administrator.
  3. If the required certificate isn't included in the list of certificates on Pearl-2 when you try and connect to Pearl-2 using a web-browser, you'll receive a warning that the device isn't trusted.

  1. Click Apply when you're done.
  2. Reboot Pearl-2 when prompted. After the system has finished rebooting, log back in to the Admin panel as admin and verify that all changes were applied.

If you need to delete the certificate you uploaded and the private key, click Delete certificate, or click Restore default certificate.