1. Manuals
  2. Brands
  3. Alcatel-Lucent Manuals
  4. Telephone
  5. ALE M3
  6. Administrator's manual

Alcatel-Lucent ALE M3 Administrator's Manual page 55

Hide thumbs
Table of Contents

Advertisement

AES128-SHA
RC2-CBC-MD5
IDEA-CBC-SHA
DHE-DSS-RC4-SHA
RC4-SHA
RC4-MD5
RC4-64-MD5
EXP1024-DHE-DSS-DES-CBC-SHA
EXP1024-DES-CBC-SHA
EDH-RSA-DES-CBC-SHA
EDH-DSS-DES-CBC-SHA
DES-CBC-SHA
DES-CBC-MD5
EXP1024-DHE-DSS-RC4-SHA
EXP1024-RC4-SHA
EXP1024-RC4-MD5
EXP-EDH-RSA-DES-CBC-SHA
EXP-EDH-DSS-DES-CBC-SHA
EXP-DES-CBC-SHA
EXP-RC2-CBC-MD5
EXP-RC4-MD5
ECDHE
5.4.2 Supported Trusted and Server Certificates
The IP phone can serve as a TLS client or a TLS server. The phone supports the dual-authentication
method. These are also known as CA and device certificates.
The TLS requires the following security certificates to perform the TLS handshake:
Trusted Certificate: When the IP phone requests a TLS connection with a server, the IP phone
should verify the certificate sent by the server to decide whether it is trusted based on the trusted
certificates list. The IP phone has 58 built-in trusted certificates. You can upload 10 custom
certificates at most. The format of the trusted certificate files must be *.pem,*.cer,*.crt and *.der and
the maximum file size is 5MB.
Server Certificate: When clients request a TLS connection with the IP phone, the IP phone sends the
server certificate to the clients for authentication. The IP phone has two types of built-in server
certificates: a unique server certificate and a custom server certificate. You can only upload one
server certificate to the IP phone. The old server certificate will be overridden by the new one. The
format of the server certificate files must be *.p12 and *.pfx and the maximum file size is 5MB.
A unique server certificate: It is unique to an IP phone (based on the MAC address) and issued by
the ALE Certificate Authority (CA).
A custom server certificate: Users can upload the custom certificate for authentication.
The IP phone can authenticate the server certificate based on the trusted certificates list. The trusted
certificates list and the server certificates list contain the default and custom certificates.
Common Name Validation feature enables the IP phone to mandatorily validate the common name of the
certificate sent by the connecting server. The Security verification rules are compliant with RFC 2818.
The ALE Myriad Series phones trust the following CAs by default:
entrust_g2_ca.pem
CybertrustPublicSureServerSVCA.pem
SFSRootCAG2.pem
ALE M3-M5-M7-M8 DeskPhones Administrator Guide
55

Advertisement

Table of Contents
loading

Related Manuals for Alcatel-Lucent ALE M3

Related Products for Alcatel-Lucent ALE M3

This manual is also suitable for:

Ale m5Ale m7Ale m8

Table of Contents