CA-signed Certificate
This is a certificate signed by the CA (Certificate Authority.) You can obtain it to apply to the Certificate Authority. This certificate certifies the existence of the scanner is and used for SSL/TLS communication so that you can ensure the safety of data communication.
When it is used for SSL/TLS communication, it is used as a server certificate.
When it is set to IPsec/IP Filtering or IEEE802.1x communication, it is used as a client certificate.
CA Certificate
This is a certificate that is in chain of the CA-signed Certificate, also called the intermediate CA certificate. It is used by the web browser to validate the path of the scanner's certificate when accessing the server of the other party or Web Config.
For the CA Certificate, set when to validate the path of server certificate accessing from the scanner. For the scanner, set to certify the path of the CA-signed Certificate for SSL/TLS connection.
You can obtain the CA certificate of the scanner from the Certification Authority where the CA certificate is issued.
Also, you can obtain the CA certificate used to validate the server of the other party from the Certification Authority that issued the CA-signed Certificate of the other server.
Self-signed Certificate
This is a certificate that the scanner signs and issues itself. It is also called the root certificate. Because the issuer certifies itself, it is not reliable and cannot prevent impersonation.
Use it when making the security setting and performing simple SSL/TLS communication without the CA-signed Certificate.
If you use this certificate for an SSL/TLS communication, a security alert may be displayed on a web browser because the certificate is not registered on a web browser. You can use the Self-signed Certificate only for an SSL/TLS communication.