Assigning Externally Created Private Keys To Tls Contexts - AudioCodes Mediant 1000B User Manual
Analog & digital voip media gateway enterprise session border controller gateway & e-sbc
Hide thumbs
Also See for Mediant 1000B:
- User manual (1281 pages) ,
- Hardware installation manual (92 pages) ,
- Configuration note (52 pages)
Table of Contents
Advertisement
6.
When the CA sends you a server certificate, save the certificate to a file (e.g., cert.txt).
Ensure that the file is a plain-text file containing the"'BEGIN CERTIFICATE" header,
as shown in the example of a Base64-Encoded X.509 Certificate below:
-----BEGIN CERTIFICATE-----
MIIDkzCCAnugAwIBAgIEAgAAADANBgkqhkiG9w0BAQQFADA/MQswCQYDVQQGEw
JGUjETMBEGA1UEChMKQ2VydGlwb3N0ZTEbMBkGA1UEAxMSQ2VydGlwb3N0ZSBT
ZXJ2ZXVyMB4XDTk4MDYyNDA4MDAwMFoXDTE4MDYyNDA4MDAwMFowPzELMAkGA1
UEBhMCRlIxEzARBgNVBAoTCkNlcnRpcG9zdGUxGzAZBgNVBAMTEkNlcnRpcG9z
dGUgU2VydmV1cjCCASEwDQYJKoZIhvcNAQEBBQADggEOADCCAQkCggEAPqd4Mz
iR4spWldGRx8bQrhZkonWnNm`+Yhb7+4Q67ecf1janH7GcN/SXsfx7jJpreWUL
f7v7Cvpr4R7qIJcmdHIntmf7JPM5n6cDBv17uSW63er7NkVnMFHwK1QaGFLMyb
FkzaeGrvFm4k3lRefiXDmuOe+FhJgHYezYHf44LvPRPwhSrzi9+Aq3o8pWDguJ
uZDIUP1F1jMa+LPwvREXfFcUW+w==
-----END CERTIFICATE-----
7.
Scroll down to the Upload certificates files from your computer group, click the
Browse button corresponding to the 'Send Device Certificate...' field, navigate to the
cert.txt file, and then click Send File.
8.
After the certificate successfully loads to the device, save the configuration with a
device reset.
9.
Open the TLS Contexts page again, select the TLS Context index row, and then verify
that under the Certificate Information group, the 'Private key' field displays "OK";
otherwise, consult your security administrator:
Figure 10-3: Private key "OK" in Certificate Information Group
Notes:
•
The certificate replacement process can be repeated when necessary (e.g., the
new certificate expires).
•
It is possible to use the IP address of the device (e.g., 10.3.3.1) instead of a
qualified DNS name in the Subject Name. This is not recommended since the IP
address is subject to change and may not uniquely identify the device.
•
The device certificate can also be loaded via the Automatic Update Facility by
using the HTTPSCertFileName ini file parameter.
10.1.3 Assigning Externally Created Private Keys to TLS Contexts
The following procedure describes how to assign an externally created private key to a TLS
Context.
To assign an externally created private key to a TLS Context:
1.
Obtain a private key in either textual PEM (PKCS #7) or PFX (PKCS #12) format
(typically provided by your security administrator). The file may be encrypted with a
short pass-phrase.
2.
Open the TLS Contexts page (Configuration tab > System menu > TLS Contexts).
3.
In the TLS Contexts table, select the required TLS Context index row, and then click
the Context Certificates
the Context Certificates page appears.
User's Manual
button, located at the bottom of the TLS Contexts page;
96
Mediant 1000B Gateway & SBC
Document #: LTRT-27034
Advertisement
Chapters
Table of Contents
