Siemens V1.2.33 manual Transferring a Server Key Material File

Page 90

Deployment Tool with TLS

Transferring a Server Key Material File

Pressing the View Certificates Button on a server key material file displays the Key Material File Dialogue.

The certificates contained in the file are shown on the left-side of the dia- logue. The details of the currently selected certificate are shown on the right-side.

After the key material has been transferred to the phone, it will be used by the phone to establish its next TLS connection to the Tool. To assist in avoiding potential problems, the Tool attempts to build and validate a cer- tificate chain from the file’s contents. The resulting chain, if any, is dis- played at the top of the left-side of the dialogue. If the Tool was able to validate the chain, the relevant trusted certificate, denoted by the Trusted Certificate Icon, is shown at the end of the chain. Note that this certificate is not present in the file itself, but resides in the Tool’s list of trusted certif- icates. Any additional certificates, which were present in the file but not used in the chain, are listed below.

If the Tool fails to build and validate a chain, an error message informs the user of one of two scenarios:

The Tool was unable to find a suitable end-entity certificate. This may mean that the certificates are all CA certificates. The Tool does not search for a particular end-entity subject DN.

The Tool does not trust the chain. This means that none of the certifi- cates in the chain were issued by any of the Tool’s trusted certificates. If the chain contains CA certificates, the user can decide to trust the highest CA certificate by selecting it, and pressing the “Trust Certifi- cate” button at the bottom of the dialogue. The certificate will be add- ed to the Tool’s list of trusted certificates, while still remaining in the file.

90

Page 89 Page 91
Image 90
Page 89 Page 91
Contents Administrator Manual Contents Configuration Tab OptiPoint typesHelp Functions Deployment Tool with TLS ParametersIntroduction Supported PhonesIntroduction Requirements Screen ResolutionFTP Service Operating SystemInstalling and Running the Program Installing and Running the ProgramInstalling the Program Click Start Installer for WindowsListing Connected IP Phones Listing Connected IP PhonesDevice List window Icons in the DeviceList window For the function Configure selected devicesIcons and Buttons Icons in the Operations windowCreating a Device List CTRL+A orSpecifying the Number of Scans Hiding List ColumnsMoving List Columns Column ContentsEditing a Device List Starting a ScanMAC address AddressStatus 164Resetting the Scan Result Stopping a ScanDevice type Deleting an Entry from the Device List Selecting a Device GroupSaving a Deployment File Loading the Deployment File CTRL+O orConfiguration ConfigurationConfiguration PreparationStarting Configuration File Transfer tabDialogs for optiPoint telephones Editing a Configuration Saving settings CTRL+S orTransfer file Minutes for Transferring a ConfigurationAdministrator password Minutes for optiPoint 300 advanceLog file Starting transferStopping transfer VerificationSaving and Loading Device Groups Saving Device GroupsCtrl+B Loading Device Groups Configuration OptiPoint 400 economy HFA OptiPoint typesOptiPoint 400 standard H450 OptiPoint 400 standard HFAOptiPoint 400 standard SIP Device type 400 standard SIPOptiPoint types Device type 400standardSIP Device type 410entryHFA, 410economyHFA OptiPoint 410 entry HFA, 410 economy HFAOptiPoint 410 standard HFA, 410 advance HFA Device type 410standardHFA, 410advanceHFADevice type 600officeHFA OptiPoint 600 office HFAOptiPoint 600 officeUP0/E Device type 600officeUP0/EOptiPoint 600 office SIP Device type 600officeSIPHelp Functions Checking the StatusHelp Functions Status Messages Following status messages may appearLog File Audio/Visual Indications Configuration TabAlert Indications ContactsDial Plan Country & LanguageDialling Codes Dial Plan 400 standard SIP V2.4, 600 office SIPFile Transfer File Transfer 400 standard H450, 400 standard SIP 2.x/SIPFile Transfer 410 standard HFA, 410 advance HFA Function Keys Http SettingsParameter Setting Key 1 to 10 or Instant MessagingIP Routing IP Routing 400 standard H450Default gateway Route Gateway Mask DNS server address Kerberos Kerberos 400 standard SIPKey & Lamp Module 1/2 Messaging ServicesKeyset Operations Keyset Operations 400 standard SIP V2.4, 600 office SIPMiscellaneous PasswordsPasswords 600 office HFA, 600 office UP0/E, 600 office SIP Miscellaneous 410 standard HFA, 410 advance HFAPersonal Directory PresencePresence 400 standard SIP Security Quality of ServiceQuality of Service 600 office UP0/E Security 400 standard SIP V2.4/SIP V3.0, 600 office SIPSIP Feature Configuration SelectedDialingSpeech parameters Telephony Configuration 400 standard HFA, 400 economy HFA Telephony ConfigurationTelephony Configuration 400 standard H450 Parameter Setting PBX/Gateway AddressTelephony Configuration 600 office HFA, 600 office UP0/E Time WAPParameters DescriptionCancel mobility password Audio ModeBeep On SIP Server Error Area codeCompression Codec Config filename prefixCodec Connection typeDhcp DSM application filename External access codeFTP password Emergency numberGatekeeper address H450 featuresFTP username Gatekeeper discovery addressInternational dial prefix IM Session TimerImport personal directory Java midlet filenameLayer 2 Default Layer 2 Voice/SignalingLayer 3 Voice/Signaling LAN/PC port modeLdap Server Addr Line Key action modeLayer 2 Priority Ldap template nameLoge filename New Domain PasswordOperating mode MaskPermit Decline Call Proximity TimerPBX/Gateway Address Port NumberQoS L2/L3 Registration TimerPstn acces code RealmRollover type Ring No Reply TimerRing Seen Timer RouteSecurity window seconds Session TimerSecurity profile Server typeSIP Registrar Port Snmp PasswordSIP Registrar Address SIP Routing ModelSnmp Trap Port Subscriber PasswordSnmp Trap IP Address Sntp Server IP AddressTerminating line preference System typeTag TimeUnused Timer User Change PasswordTrusted Certificates File Management Vlan Id User passwordWAP Mode Vlan MethodDial Plan Default RouteAbbreviations and Technical Terms DNSEpid FTPHFA HttpKDC LCD LANLdap LEDMCU PasswordMAC MIBPstn PBXPing RAMSnmp ROMSIP SntpURL UDPURI VlanVoIP WAPWSP Installation and Configuration Administration ScenariosConfiguring an FTP Server Administration ScenariosAdministration Scenarios Certificates Deployment Tool with TLSPublic Key Asymmetric Cryptography Deployment Tool with TLSTLS Certificate File FormatsUse of TLS by an IP Phone Operating the XML Management Interface over TLSConfiguring the Deployment Tool for TLS Installing the Deployment Tool TLS Handshake FailureTransferring Certificates to Phones Selecting a File for Transfer Transferring a Server Key Material File Transferring a Client Trusted Certificates File Ref. No. A31003-A2056-A105-63-76A9
Top Page Image Contents