Configuring Certificates; Replacing Device Certificate - AudioCodes Mediant 2000 User Manual
Voip media gateway sip protocol
Hide thumbs
Also See for Mediant 2000:
- User manual (702 pages) ,
- Installation manual (44 pages) ,
- Hardware installation manual (30 pages)
Table of Contents
Advertisement
SIP User's Manual
8
Configuring Certificates
The Certificates page is used for configuring secure communication using HTTPS and SIP
TLS. This page allows you to do the following:
Replace the device's certificate - see ''Replacing Device Certificate'' on page
Load a new private key from an external source - see ''Loading a Private Key'' on
page
82
Configure trusted root certificates - see ''Mutual TLS Authentication'' on page
Regenerate keys and self-signed certificates - see ''Self-Signed Certificates'' on page
84
Note:
8.1
Replacing Device Certificate
The device is supplied with a working Transport Layer Security (TLS) configuration
consisting of a unique self-signed server certificate. If an organizational Public Key
Infrastructure (PKI) is used, you may wish to replace this certificate with one provided by
your security administrator.
To replace the device's certificate:
1.
Your network administrator should allocate a unique DNS name for the device (e.g.,
dns_name.corp.customer.com). This DNS name is used to access the device and
therefore, must be listed in the server certificate.
2.
If the device is operating in HTTPS mode, then set the 'Secured Web Connection
(HTTPS)' field (HTTPSOnly) to HTTP and HTTPS (see ''Configuring Web Security
Settings'' on page 58). This ensures that you have a method for accessing the device
in case the new certificate does not work. Restore the previous setting after testing the
configuration.
Version 6.4
The device is shipped with a working TLS configuration. Therefore, configure
certificates only if required.
79
8. Configuring Certificates
79
83
November 2011
Advertisement
Table of Contents
Troubleshooting
