Certificate Management - Avaya J129 Installing And Administering

Hide thumbs Also See for J129:

Installing and administering (114 pages)

Instructions manual (70 pages)

User manual (61 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

Table of Contents

OpenSSH/OpenSSL version

The phone displays the version of OpenSSL and OpenSSH on the VIEW screen under the ADMIN

menu. This information is displayed when the parameter DISPLAY_SSL_VERSION is set to 1.

SSH Fingerprint

The phone displays SSH fingerprint to manually verify that an SSH connection is established with

the correct phone.

Time synchronization

This feature allows the phone to synchronize the time with the configured NTP servers in intervals.

The parameter SNTP_SYNC_INTERVAL checks the time interval for synchronization.

• Default: 1440 minutes

• 60–2880 minutes

Certificate management

Certificates are used to establish secure communication between network entities. Server or mutual

authentication can be used to establish a secure connection between a client and server. The client

always validates the certificate of the server and maintains a trust store to support this validation. If

the server additionally requires mutual authentication, it requests an identity certificate from the

client. The identity certificate must be provided and validated by the server to establish mutual

authentication. Server must validate the identity certificate to establish a secure connection..

Phones support three types of certificates:

• Trusted certificates

• Online Certificate Status Protocol (OCSP) trust certificates

• Phone identity certificates

The Trusted and OCSP trust certificates are root or intermediate Certification Authority (CA)

certificates that are installed on the phone through the 46xxsettings.txt file.

Enhancements for installing identity certificates:

• SCEP over HTTPS is supported for enrollment.

• PKCS#12 file format is supported for installation.

To check the number of days remaining for Identity certificate expiry, use the parameter

CERT_WARNING_DAYS . The user is notified through a log message if the log level is maintained

as WARNING with the category CERTMGMT. The logs are maintained and displayed if SYSLOG is

enabled.

MIB object tables and IDs are created for certificates installed on the phone. You can view the

certificate attributes through an SNMP MIB browser.

September 2017

Installing and Administering Avaya J129 IP Phone

Comments on this document? infodev@avaya.com

Certificate management

Table of Contents

Show Quick Links

Quick Links:
Administration Methods
Dhcp Options
Accessing the Admin Menu During Phone...

Hide quick links:

Table of Contents

Certificate Management - Avaya J129 Installing And Administering

Certificate management

Hide quick links:

Related Manuals for Avaya J129

Related Content for Avaya J129

Table of Contents