Https Server Certificate Validation - Mitel 6800 Series Administrator's Manual
Hide thumbs
Also See for 6800 Series:
- Installation manual (21 pages) ,
- Release notes (8 pages) ,
- Setup manual (2 pages)
Table of Contents
Advertisement
•
TLS 1.0 - The phone will attempt to communicate using TLS 1.0 only.
•
TLS 1.1 - The phone will attempt to communicate using TLS 1.1 only.
•
TLS 1.2 - The phone will attempt to communicate using TLS 1.2 only.
•
SSL 3.0 - The phone will attempt to communicate using SSL 3.0 only.
•
TLS Preferred - The phone will initially attempt to communicate using TLS 1.0. If the
TLS protocol is rejected, the phone will automatically switch to the SSL 3.0 protocol.
3. Enable HTTP to HTTPS redirect by checking the HTTPS Server - Redirect HTTP to
HTTPS field check box. (Disable this field by unchecking the check box). Default is disabled.
4. Enable the blocking of XML HTTP POSTs by the HTTPS server by checking the HTTPS
Server - Block XML HTTP POSTs field check box. (Disable this field by unchecking the
check box). Default is disabled.
5. Click Save Settings to save your settings.
HTTPS LOCAL CERTIFICATE SUPPORT/MUTUAL AUTHENTICATION
The 6800 series IP phones provide a built-in common 2048-bit HTTPs certificate allowing for
mutual authentication between the HTTPs server and the phones during an HTTPs session.
The certificate can be used for file download processes (e.g. configuration file download for
secure provisioning) and for HTTPs/XML requests. Please go to
the client certificate.
HTTPS SERVER CERTIFICATE VALIDATION
The HTTPS client on the IP Phones support validation of HTTPS certificates. This feature
supports the following:
•
SHA-1 and SHA-2 signed certificates from various certificate vendors as detailed in
Appendix F,
"Certificates Supported in This Software Release"
•
User-provided certificates
•
Checking of hostnames
•
SSL Wildcard certificate (i.e. SSL certificate specifying the Common Name as a wildcard
[e.g. CN=*.company.com]) support.
•
Checking of certificate expiration
•
Ability to disable any or all of the validation steps
•
Phone displays a message when a certificate is rejected (except on check-sync operations)
All validation options are enabled by default.
Certificate Management
Mitel Provided Certificates
The phones come pre-loaded with root and intermediate SHA-1 and SHA-2 certificates various
certificate vendors.For detailed information regarding the certificates supported on the IP
phones, see
Appendix F,
"Certificates Supported in This Software Release"
Network Settings
www.miteldocs.com
to obtain
.
4-38
- Quick Links:
- Model 6867I Ip Phone
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
