Table of Contents
Advertisement
3.4.6 Certificate Policy
3.4.6.1 Online Certificate Check
3.4.6.2 Server Authentication Policy
A31003-D3000-M100-01-76A9, 02-2013
OpenScape Desk Phone IP, Phone Administration, Administrator Documentation
|--- Admin password
|--- New password
|
|--- Confirm password
Related Topics
Related Topics
The Online Certificate Status Protocol (OCSP) is used to check if a certificate to
be used has been revoked. This protocol is used to query an Online Certificate
Status Responder (OCSR) at the point when the certificate is being validated. The
address of an OCSR can be configured on the phone and can also be obtained
from the certificate to be checked (which will have the priority).
When OCSP check is activated, the configured OCSR is requested to check if
the certificate has been revoked.
OCSR 1 address specifies the IP address (or FQDN) of a primary OCSP
responder.
OCSR 2 address specifies the IP address (or FQDN) of a secondary OCSP
responder.
Administration via WBM
Security and Policies > Certificates > Generic
Related Topics
For individual certificates provided by specific servers, the level of authentication
can be configured. When None is selected, no certificate check is performed.
With Trusted, the certificate is only checked against the signature credentials
provided by the remote entity for signature, and the expiry date is checked. When
Full is selected, the certificate is fully checked against the credentials provided by
the remote entity for signature, the fields must match the requested subject/
usage, and the expiry date is checked.
Secure file transfer sets the authentication level for the HTTPS server to be used
(see Common FTP/HTTPS Settings).
Administration
Security
77
Advertisement
Table of Contents
Troubleshooting
