CA-signed Certificate
This is a certificate signed by the CA (Certificate Authority.) You can obtain it by applying to the Certificate Authority. This certificate certifies the existence of the scanner is and used for SSL/TLS communication so that you can ensure the safety of data communication.
When it is used for SSL/TLS communication, it is used as a server certificate.
When it is set to IPsec/IP Filtering or IEEE802.1x communication, it is used as a client certificate.
CA Certificate
This is a certificate that is in chain of the CA-signed Certificate, also called the intermediate CA certificate. It is used by the web browser to validate the path of the scanner's certificate when accessing the server of the other party or Web Config.
For the CA Certificate, set when to validate the path of server certificate being accessed from the scanner. For the scanner, set to certify the path of the CA-signed Certificate for SSL/TLS connection.
You can obtain the CA certificate of the scanner from the Certification Authority where the CA certificate is issued.
Also, you can obtain the CA certificate used to validate the server of the other party from the Certification Authority that issued the CA-signed Certificate of the other server.
Self-signed Certificate
This is a certificate that the scanner signs and issues itself. It is also called the root certificate. Because the issuer certifies itself, it is not reliable and cannot prevent impersonation.
Use it when configuring the security setting and performing simple SSL/TLS communication without the CA-signed Certificate.
If you use this certificate for an SSL/TLS communication, a security alert may be displayed on a web browser because the certificate is not registered on a web browser. You can use the Self-signed Certificate only for an SSL/TLS communication.