Avaya Scopia XT Series Deployment Manual page 203

Video collaboration solution for ip office

Hide thumbs Also See for Scopia XT Series:

Release notes (90 pages)

User manual (84 pages)

Quick setup manual (7 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

Table of Contents

Series for which it was created, together with the CA root certificate. Once this is done, the

component can authenticate itself and is ready for TLS connection.

You can also determine the level of security of the CSRs you generate. You can create encryption

keys of 1024 bit length, or highly secure (longer) keys containing 2048 bits. You can use an

encrypted PKCS #12 file format to import/export both the private key and the corresponding

certificate into the XT Codec Unit from the XT Series web interface. Unlike .pem files, the PKCS

#12 file format is fully encrypted and contains both public and private certificate pairs. It can also

contain the certificate of the signing trusted authority. You can also protect the file using a

password.

Before you begin

To generate a certificate signing request, you can use the system IP address or DNS name. If you

use an IP address, please assure that it is a static IP address, since the system generates the

certificate request using its IP address as the Common Name (CN). For more information, see

Configuring Advanced IP Address Settings

you must generate a new CSR.

Procedure

1. (Optional) To generate the highest security CSRs, access the certificate preferences. From

the XT Series web interface, select Administrator Settings > Utilities > Certificates >

General. From the endpoint's main menu, select Configure > Advanced > Utilities >

Certificates > General.

2. Configure the fields, as follows:

Field Name

Certificates Key

Length

Warning days

before

expiration

December 2017

on page 126. If you modify the XT Series's IP address,

Figure 139: Certificates: General

Description

Select High Security for 1024 bit key length, or Very High Security for 2048

bit key length.

The XT Series shows an alert when the certificate is about to expire in the

specified number of days. The minimum is 30 days and the default is 60 days.

When a certificate is expired, the alert is displayed in the System Status

page. From the Web interface, you can browse to get detailed information

about the expired certificate.

Avaya Video Collaboration Solution for IP Office Deployment Guide

Comments on this document? infodev@avaya.com

Securing Connections to the XT Series Using TLS

203

Table of Contents

Avaya Scopia XT Series Deployment Manual page 203

Related Manuals for Avaya Scopia XT Series

Related Products for Avaya Scopia XT Series

Table of Contents