Navigation

    Community
     reolink reolink  reolink reolink
    • Search
    • Store
    • Community
    • Support
    • Register
    • Login

    Third Party SSL Cert on Reolink Camera

    Reolink Client & APP
    13
    20
    203
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ant33t_36426949112
      ant33t last edited by

      Hi All,

      Does anyone know if Reolink Camera support 3rd part SSL Certs?

      So I have a website https://hello.me ( for example )

      It redirects to my ISP's IP 82.X.X.X

      I want to overwrite the self signed cert in the Reolink Camera to my 3rd party one.

      Thanks!

      1 Reply Last reply Reply Quote 1
      • Bob_30281727886
        Bob last edited by

        Hi ant33t,

        Sorry that Reolink IP cameras don't support 3rd part SSL Certs. Only HTTPS is supported and embeded.

        1 Reply Last reply Reply Quote 0
        • ant33t_36426949112
          ant33t last edited by

          Thanks for the info, any idea if support for this feature is planned?

          I noticed Amcrest Cameras have this function.

          Thanks!

          1 Reply Last reply Reply Quote 0
          • Bob_30281727886
            Bob last edited by

            Hi ant33t,
            I will forward this request and see what happens.
            Thanks again.

            1 Reply Last reply Reply Quote 0
            • Google - Rodolfo Grave_63680067572
              Google - Rodolfo Grave last edited by

              Hello.

              Are there any updates on this?

              The current setup is not secure, as anyone can create a certificate and perform a man-in-the-middle attack, since the "Issued by reo-link, Issued to reo-link" offers no guarantees. See the attached picture for an idea of what the invalid certificate looks like to the eyes of a safe browser like Chrome.

              One option is to provide the cameras with a certificate signed by a trusted authority, but that's going to cost Reolink money.

              The cheap alternative is to let people install their own certificates on the cameras so that they can trust their own.

              Could you please follow up on this? If you are serious about security this is a must-have feature.

              The other feature that's required is the ability to disable non-secure (HTTP) access. At the moment you have to set the HTTP port to a low number (try 1) to achieve that effect, but I have no guarantee it works.
              ReolinkCertificateError.png

              1 Reply Last reply Reply Quote 1
              • ualex73_56290320986264
                ualex73 last edited by

                Same here, would be nice to install your own SSL certificate ... Also that we can disable protocols, like HTTP.

                1 Reply Last reply Reply Quote 0
                • christoffer andersson_125664711258328
                  christoffer andersson last edited by

                  I also request the support for installing your own certificate on the cameras, please consider adding this.

                  1 Reply Last reply Reply Quote 0
                  • npcarling26_28371092250
                    npcarling26 last edited by

                    I will throw my hand in in requesting this feature as well. Being able to disable HTTP completely would be nice, and also being able to install my own SSL certificate.

                    1 Reply Last reply Reply Quote 0
                    • Carl_31331526639
                      Carl last edited by

                      Sorry that the Reolink cameras do not support the SSL certificate at present. We will forward your request to our R&D people, they will pay close attention to your requirement. We will notify you at the first time as long as we have an update.
                      Sorry for any inconvenience caused to you. If you meet the problem when you set this camera, you can send an email to the support@reolink.com, we will help you figure it out. Thanks.

                      1 Reply Last reply Reply Quote 1
                      • Google - Rodolfo Grave_63680067572
                        Google - Rodolfo Grave last edited by

                        Hi Carl.

                        Reolink has been saying the same for 2 years. This issues was first raised on April 2017, and the answer was very similar to what you just said.

                        Reolink products are great in terms of functionality and reliability, but without either:


                        1. A pre-installed certificate, signed by a trusted Certificate Authority

                        2. The ability for us (owners) to install our own certificates

                        3. The ability to shutdown all HTTP (unencrypted) traffic



                        The cameras are inheritenly insecure and open to many attacks. CCTV images are obviously very private and ReoLink should offer us a better option than just hope for the best.

                        1 Reply Last reply Reply Quote 1
                        • ualex73_56290320986264
                          ualex73 last edited by

                          @rodolfo: yes it is already a long time they 'promised' to look into it.

                          All across the board i don't see any improvements on Reolink camera's, e.g. removing Flash. This is the main reason why I stopped buying Reolink. I am not saying other brands are perfect, but they have it better under control compared to Reolink.

                          1 Reply Last reply Reply Quote 0
                          • Google - Rodolfo Grave_63680067572
                            Google - Rodolfo Grave last edited by

                            This is a shame because the most difficult part, the hardware, is pretty good. My cameras have been outdoors for a few years now and they keep giving. Not even a bit of rust anywhere.

                            Please, Reolink, fix the software. You are even running standard firmwares, based on Linux, it should be relatively easy to include the modules required to allow for what we are asking, and then more!

                            Feel free to get in touch if you need a deeper explanation of what we are asking and the reasons why it's important, but don't ignore our concerns or you will keep loosing clients.

                            1 Reply Last reply Reply Quote 0
                            • Jacob_55875427986
                              Jacob last edited by

                              Still nothing. Sad.

                              1 Reply Last reply Reply Quote 0
                              • SwampdogMash_232282604835000
                                SwampdogMash last edited by

                                Throwing my hat into the ring here. This really is a feature that should be present in the camera software, even if it REQUIRES an SD card to act as the storage location for the Certificates. I notice that the latest firmware on the RLC-410-5MP devices now removes SSL, TLS1.0 and TLS1.1, which is definitely a step in the right direction but doesn't address the issues of moving away from self signed certificates ( I notice the RLC-511-W still has SSL, TLS1.0 and 1.1 enabled).

                                In all fairness, the ability to use "Let's encrypt" certificates that can automatically self renew on the cameras using the camera software would be absolutely perfect, along with the ability to create a CSR on the camera and upload your own certs.

                                As many others have said, "Security" is very important in a "security" camera, especially given the new European GDPR rules, and the hardware is excellent. If you could please address the issue with certificates and the ability to turn off HTTP that would be brilliant. Even a reply to let us know what difficulties there are in this would be a step forward.

                                1 Reply Last reply Reply Quote 0
                                • jonas h hallberg_277827100418275
                                  jonas h hallberg last edited by

                                  Having a 420-5MP and can't use HTTPS at all because chrome denies access ERR_SSL_SERVER_CERT_BAD_FORMAT.
                                  Please add function to change SSL certificate.

                                  1 Reply Last reply Reply Quote 0
                                  • Crimp On_62210811129
                                    Crimp On last edited by

                                    Please be aware that Chrome does not actually DENY access. Chrome throws up a WARNING encouraging the user not to proceed, but there is an option on the page (maybe called "more information"?) where the user can say, "Go to the web page ANYWAY and quit nagging me.")

                                    1 Reply Last reply Reply Quote 0
                                    • mnpg_396000856940740
                                      mnpg last edited by

                                      Hi,
                                      My cameras have a certificate that expired in january 2026. I understand, we'll had time but i don't want to change my cameras at that date.
                                      Please Reolink, https will be the norm, making a option to put a third-party certificate will be a very good thing. If the web server of the camera run under Nginx or Apache, It's not difficult to add this functionnality.
                                      Thanks a lot

                                      1 Reply Last reply Reply Quote 0
                                      • Crimp On_62210811129
                                        Crimp On last edited by

                                        Is that a typo, " expired in january 2026". Today is only June 2021.

                                        mnpg_396000856940740 1 Reply Last reply Reply Quote 0
                                        • mnpg_396000856940740
                                          mnpg @Crimp On last edited by

                                          Is that a typo, ” expired in january 2026″. Today is only June 2021.



                                          OK i'm wrong. sorry for my bad english. "will expired in january 2026": It's better ? My question isn't difficult to understand, it's not a matter of syntax.

                                          1 Reply Last reply Reply Quote 0
                                          • Cynthia_124785627824270
                                            Cynthia last edited by

                                            Thank you for your feedback. We will forward your problem to the R&D team.

                                            1 Reply Last reply Reply Quote 1
                                            • 1 / 1
                                            • First post
                                              Last post
                                            Reolink cloud reolink reolink Reolink cloud reolink reolink

                                            Reolink Store|Support|About Us|Privacy Policy|Terms and Conditions

                                            Copyright 2021 © Reolink All Rights Reserved.