PKCS12 file contains a trusted certificate, Avaya Vantage
™
installs the PKCS12 file without the
trusted certificate. You can specify the list of trusted certificates on Avaya Vantage
™
only through
TRUSTCERTS.
Identity certificates are stored in the system credential storage under the “VPN and APPS” and
“Wi-Fi” repositories. Only Avaya Vantage
™
platform applications and Avaya applications, such as
Avaya Vantage
™
Basic, can access the system credential storage. Third party applications can
access identity certificates only if these applications are specified in the
ID_CERT_APPLICATION_LIST configuration parameter.
You can review certificates installed on Avaya Vantage
™
device:
• The Settings > Security > EASG trusted credentials menu on the device contains EAGS
certificates.
• The Settings > Security > Trusted credentials menu on the device contains CA
certificates.
• The Settings > Security > Client credentials menu on the device contains identity
certificates.
Certificate usage by applications
The following table shows certificates that are used by different applications on Avaya Vantage
™
.
The use of built-in Android trusted certificates by some applications depends on the
ENABLE_PUBLIC_CA_CERTS parameter setting.
Application
Built-in Android
trusted certificates
Downloaded trusted
certificates
Identity certificate
generated using SCEP
or PKCS12 file
Wi-Fi 802.1x with EAP-
TLS, EAP-TTLS
N Y Y
Ethernet 802.1x with
EAP-TLS
Y
Only when
ENABLE_PUBLIC_CA_
CERTS is set to 1.
Y Y
HTTPS configuration
and image files
download
Y
Only when
ENABLE_PUBLIC_CA_
CERTS is set to 1.
Y Y
PPM Y
Only when
ENABLE_PUBLIC_CA_
CERTS is set to 1.
Y Y
SCEP over HTTPS Y Y Y
Table continues…
Security configuration
May 2018 Installing and Administering Avaya Vantage
™
40
Comments on this document? infodev@avaya.com
To Next Page
Loading...
