AudioCodes Mediant 4000 SBC User Manual page 107

User's Manual
signing it. A client certificate is considered trusted if one of the CA certificates up the
certificate chain is found in the server certificate directory.
For the device to trust a whole chain of certificates per TLS Context, you need to add them
to the device's Trusted Certificates Store, as described below.
Note:

To import certificates into device's Trusted Root Certificate Store:
1. Open the TLS Contexts table (see ''Configuring TLS Certificate Contexts'' on page
95).
2. In the table, select the required TLS Context index row, and then click the Trusted
Root Certificates link located below the table; the Trusted Certificates table appears.
3. Click the Import button, and then browse to and select the certificate file.
Figure 10-11: Importing Certificate into Trusted Certificates Store
4. Click OK; the certificate is loaded to the device and listed in the Trusted Certificates
store.
You can also do the following with certificates that are in the Trusted Certificates store:

Delete certificates: Select the required certificate, click Remove, and then in the
Remove Certificate dialog box, click Remove.

Save certificates to a folder on your PC: Select the required certificate, click Export,
and then in the Export Certificate dialog box, browse to the folder on your PC where
you want to save the file and click Export.
Version 7.2
Figure 10-10: Certificate Chain Hierarchy
Only Base64 (PEM) encoded X.509 certificates can be loaded to the device.
10. Configuring SSL/TLS Certificates
107 Mediant 4000 SBC