EasyManua.ls Logo

Avaya 1600 Series - Adding the Identity Certificate

Avaya 1600 Series
99 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
H323 Telephone Installation Page 88
Issue 23e (Friday, February 15, 2019)IP Office™ Platform 11.0
Comments on this document? infodev@avaya.com
7.2 Adding the Identity Certificate
By default the IP Office root certificate is used. For an IP500 V2 this is its own self-signed security certificate and no
further changes are required. For Linux based servers, it is necessary to download the server's own self-signed certificate
and then load that certificate into the IP Office service's trusted certificate store.
To use a third-party certificate, that certificate needs to be uploaded to the IP Office's trusted certificate store.
The telephone is informed about which certificate to use by setting in the 46xxsettings.txt file it receives. The following
settings are used:
·
SET TLSSRVRVERIFYID 1
This setting instructs the telephone to verify the TLS certificate.
·
SET TRUSTCERTS Root-CA-xxxxxxxx.pem
This setting indicate the name of the security certificate that the telephone should request and load when starting.
When the IP Office receives a request for a certificate, it searches its trusted certificate store. If bytes 13-16 of the
Public key of the root CA match the xxxxxxxx of the filename in the request, then IP Office provides the root CA as
an auto-generated file named Root-CA-xxxxxxxx.pem.
For systems using auto-generated files, the settings are added automatically. For other installation, the settings must be
manually added to the section of the 46xxsettings file intended for 9608, 9611, 9621 and 9641 telephones.
To download the identity certificate from a Linux based server:
1. Browse to https://<server_address>:7071 and login to the server's web control menus.
·
Alternatively, login to the server's web management menus and then select Platform View.
2. Select the Settings tab and then select General.
3. Locate the Certificates section.
4. In the Certified Authority Settings section, click Download (PEM-Encoded).
To upload a certificate to the server's trusted certificate store:
1. Start IP Office Manager.
2. Select File | Advanced | Security Settings.
3. Select the server and login.
4. Select System.
5. Select the Certificates tab.
6. In the Trusted Certificate Store section, click Add.

Table of Contents

Other manuals for Avaya 1600 Series

Preview: Administrator's Guide
Administrator's Guide142 pages
Preview: Installation And Maintenance Guide
Installation And Maintenance Guide82 pages
Preview: Reference Guide
Reference Guide4 pages
Preview: Application Notes
Application Notes9 pages
Preview: Installation And Safety Instructions
Installation And Safety Instructions10 pages

Related product manuals