Configuring Security; Implementing X.509 Authentication; Factory-Set Certificates And Audiocodes Trusted Root Ca - AudioCodes 405HD Administrator's Manual

High definition ip phones series

Hide thumbs Also See for 405HD:

Administrator's manual (232 pages)

User manual (102 pages)

Quick manual (4 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

Table of Contents

Administrator's Manual

Configuring Security

7.1

Implementing X.509 Authentication

X.509 certificates can be used to authenticate a connection with a remote server or HTTP/S

client browser. The certificates may be implemented in one of or a combination of the

following SSL handshake negotiation scenarios:

The phone is a client who needs to authenticate the remote server e.g. provisioning



server to which it is attempting to connect.

In this case, the phone needs to load the certificate and Trusted CA used by the

remote server.

The remote server needs to authenticate the incoming connection request from the



phone client.

In this case, the remote server needs to load the certificate and Trusted CA used by

the phone.

The phone is a server who needs to authenticate an incoming connection request



from a remote HTTP client browser.

In this case, the phone needs to load the certificate and Trusted CA used by the

remote HTTP client browser.

The remote HTTP client browser needs to authenticate the phone to which it is



attempting to connect.

In this case, the remote HTTP client browser needs to load the certificate and Trusted

CA used by the phone.

The following types of certificates can be used to authenticate the connections described in

the above scenarios:

Factory-set Certificates (see Section 7.1.1):



Certificates that are loaded to the AudioCodes IP Phone using an AudioCodes

certificate and AudioCodes Trusted Root CA.

User-Generated Certificates (see Section 7.1.2):



Certificates that are generated by the user that may use the AudioCodes Tusted Root

CA or an external CA.

7.1.1

Factory-Set Certificates and AudioCodes Trusted Root CA

AudioCodes IP phones are loaded with factory-set preinstalled certificate files: private key

file, certificate file and a Trusted Root CA file that is signed by AudioCodes (including

DIGICert).

Note:

•

The phone's screen visually indicates that factory certificates are installed.

√

The Release Information menu (MENU button > Status) displays the 'Device

Certificate' parameter.

√

The values of the 'Device Certificate' parameter can be Installed, Self-Signed,

or Not Installed.

Whenever the phone authenticates with a remote server, it can be authenticated using these

certificate files. Each phone receives a uniquely generated private key certificate file based

on its MAC address.

Version 3.4.3

149

7. Configuring Security

400HD Series IP Phones

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

430hd 440hd 445hd 450hd C450hd Hrs

Configuring Security; Implementing X.509 Authentication; Factory-Set Certificates And Audiocodes Trusted Root Ca - AudioCodes 405HD Administrator's Manual

Configuring Security

Implementing X.509 Authentication

Factory-Set Certificates and AudioCodes Trusted Root CA

Hide quick links:

Related Manuals for AudioCodes 405HD

Related Content for AudioCodes 405HD

This manual is also suitable for:

Table of Contents