Yealink SIP-T48G Administrator's Manual page 229

Sip t2 series; sip t4 series

Hide thumbs Also See for SIP-T48G:

Administrator's manual (898 pages)

User manual (270 pages)

Quick start manual (45 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

284

285

286

287

288

289

290

291

292

293

294

295

296

297

298

299

300

301

302

303

304

305

306

307

308

309

310

311

312

313

314

315

316

317

318

319

Table of Contents

IP phone should verify the certificate sent by the server to decide whether it is

trusted based on the trusted certificates list. The IP phone has 30 built-in trusted

certificates. You can upload 10 custom certificates at most. The format of the trusted

certificate files must be *.pem,*.cer,*.crt and *.der and the maximum file size is

5MB. For more information on 30 trusted certificates, refer to

Certificates

Server Certificate: When clients request a TLS connection with the IP phone, the IP



phone sends the server certificate to the clients for authentication. The IP phone

has two types of built-in server certificates: a unique server certificate and a

generic server certificate. You can only upload one server certificate to the IP

phone. The old server certificate will be overridden by the new one. The format of

the server certificate files must be *.pem and *.cer and the maximum file size is

5MB.

A unique server certificate: It is unique to an IP phone (based on the MAC

address) and issued by the Yealink Certificate Authority (CA).

A generic server certificate: It issued by the Yealink Certificate Authority (CA).

Only if no unique certificate exists, the IP phone may send a generic certificate

for authentication.

The IP phone can authenticate the server certificate based on the trusted certificates list.

The trusted certificates list and the server certificates list contain the default and custom

certificates. You can specify the type of certificates the IP phone accepts: default

certificates, custom certificates or all certificates.

Common Name Validation feature enables the IP phone to mandatorily validate the

common name of the certificate sent by the connecting server. And Security verification

rules are compliant with RFC 2818.

Note

In TLS feature, we use the terms trusted and server certificate. These are also known as

CA and device certificates.

Resetting the IP phone to factory defaults will delete custom certificates by default. But

this feature is configurable using the configuration files. For more information on the

configuration parameter, refer to

Procedure

Configuration changes can be performed using the configuration files or locally.

Configuration

File

on page 257.

Transport Layer Security

<y0000000000xx>.cfg

Configuring Security Features

Appendix C: Trusted

on page 215.

Configure trusted certificates feature.

Parameters:

security.trust_certificates

security.ca_cert

security.cn_validation

Configure server certificates feature.

217

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

Sip-t22 Sip-t22p

Yealink SIP-T48G Administrator's Manual page 229

Hide quick links:

Related Manuals for Yealink SIP-T48G

Related Products for Yealink SIP-T48G

This manual is also suitable for:

Table of Contents