Chapter 20: X.509 Certificates; Certificate Management; Root Certificate - Avaya 1110 Fundamentals
Communication server 1000
Hide thumbs
Also See for 1110:
- User manual (146 pages) ,
- User manual (30 pages) ,
- Getting started (2 pages)
Table of Contents
Advertisement
Chapter 20: X.509 Certificates
This section contains the following topics:
•
Certificate management
•
Root certificate
on page 395
•
Device certificate
•
Certificate installation
Certificate management
SSL/TLS for protecting HTTP management traffic supports only server side certificate-based
authentication. TLS for SIP supports both server side and client side certificate-based
authentication (mutual authentication). DTLS-capable IP Phones can validate certificates on
the Signaling Servers and Media Cards.
Unified Communications Manager provides a centralized console for managing X.509
certificates, including issuing certificates, distributing certificates to Avaya Communication
Server 1000 devices (for example, a SIP Gateway), revoking certificates, and managing the
trusted CA certificate list on Communication Server 1000 devices.
For example, from the certificate management console, X.509 certificates can be assigned
remotely to Web SSL and SIP TLS services on SIP Gateways, as well as NRS and Element
Manager servers. Different services on the same device can have their own certificates, such
as DTLS, or share a common certificate. For example, Web SSL and SIP TLS services that
are active on the same device can share the same X.509 certificate.
Important:
IP Phones require UNIStim 4.0 or later to support DTLS signaling encryption.
Root certificate
This root certificate is the customers root certificate. It is installed as part of a configuration file
or as part of the SCEP process.
IP Deskphones Fundamentals
on page 395
on page 396
on page 396
February 2013
395
Hide quick links:
Advertisement
Table of Contents
