Table of Contents
Advertisement
Manually setting up the XT Series
Parameter
Certificate Hostname Validation
Verify Certificate Key Usage
Verify Certificate Revocation
4. From the web interface only, select Save.
5. (Optional) If you are securing SIP connections using TLS certificates, continue with
Securing Connections to the XT Series Using TLS
Related links
Manually setting up the XT Series
August 2020
Description
Select Accept Validated Only to ensure that only
certificates with validated hostnames are accepted by
XT Series. This is the default policy for certificate
hostname and key/extended key usage validation.
Select Accept Validated or same default certificate to
accept certificates which are validated or which are the
same as those currently used by the XT Series.
Select Accept All to accept certificates without
performing a hostname validation.
Select Yes to ensure that the XT Series only accepts
certificates if a 'Key Usage' or 'Extended Key Usage'
value is validated.
Select No to accept certificates without performing a
'Key Usage' or 'Extended Key Usage' check.
Select Yes always to ensure that the XT Series checks
if the certificate has been revoked. It treats
indeterminate results as failures.
Select Yes if possible to check if the certificate has
been revoked and to reject certificates which have been
known to be revoked but to allow certificates if the result
of the check is indeterminate due to missing revocation
information in the certificate or a failure to check the
revocation status, such as in situations where there is
no response from the OCSP responder, or an inability to
download the CRL, and so on.
Select No to disable certificate checking.
on page 105
Deployment Guide for Avaya XT Series
Comments on this document? infodev@avaya.com
on page 237.
136
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
