Provisioning
Configuring a Custom Certificate Authority
Configuring a Custom Certificate Authority
STEP 1
STEP 2
STEP 3
STEP 4
General Purpose Parameters
Cisco Small Business SPA300 Series, SPA500 Series, and WIP310 IP Phone Administration Guide
Digital certificates can be used to authenticate network devices and users on the
network. They can be used to negotiate IPSec sessions between network nodes.
A third party uses a Certificate Authority Certificate to validate and authenticate
two or more nodes that are attempting to communicate. Each node has a public
and private key. The public key encrypts data. The private key decrypts data.
Because the nodes have obtained their certificates from the same source, they are
assured of their respective identities.
The device can use digital certificates provided by a third-party Certificate
Authority (CA) to authenticate IPSec connections.
To enable and configure a custom certificate of authority:
Click Admin Login > advanced > Voice > Provisioning.
In the CA Settings section in Custom CA Check Enable, select yes.
In Custom CA RULE, enter the rule in the following format:
Click Submit All Changes.
The general purpose parameters GPP_* are used as free string registers when
configuring the Cisco IP phones to interact with a particular provisioning server
solution. The GPP_* parameters are empty by default. They can be configured to
contain diverse values, including the following:
•
Encryption keys
•
URLs
•
Multistage provisioning status information
•
Post request templates
•
Parameter name alias maps
•
Partial string values, eventually combined into complete parameter values.
6
168