Manuals / Aastra Telecom / Communications / Telephone

Aastra Telecom CT9143i manual Https Server Certificate Validation, Certificate Management

Models: CT9143i

1 72

Download 72 pages 48.79 Kb

Page 27

SIP IP Phone Models 9143i, 9480i, 9480i CT and 5i Series Phones Release Note 2.3

New Features in Release 2.3

HTTPS Server Certificate Validation

The HTTPS client on the IP Phones now support validation of HTTPS certificates. This new feature supports the following:

•Verisign, GeoTrust, and Thawte signed certificates

•User-provided certificates

•Checking of hostnames

•Checking of certificate expiration

•Ability to disable any or all of the validation steps

•Phone displays a message when a certificate is rejected (except on check-sync operations)

All validation options are enabled by default.

Certificate Management

Aastra Provided Certificates

The phone comes with root certificates from Verisign, GeoTrust, and Thawte pre-loaded.

User Provided Certificates

The administrator has the option to upload their own certificates onto the phone. The phone downloads these certificates in a file of .PEM format during boot time after configuration downloads. The user-provided certificates are saved on the phone between firmware upgrades but are deleted during a factory default. The download of the User-provided certificates are based on a filename specified in the configuration parameter, https user certificates (Trusted Certificates Filename in the Aastra Web UI; User-provided certificates are not configurable via the IP Phone UI).

Note: Certificates that are signed by providers other than Verisign, GeoTrust or Thwate do not verify on the phone by default. The user can overcome this by adding the root certificate of their certificate provider to the use-provided certificate .PEM file.

RN-001029-02, Release 2.3, Rev 00

23

Image 27

Aastra Telecom CT9143i manual Https Server Certificate Validation, Certificate Management

Contents

SIP IP Phone Page Contents WatchDog Task Feature About this Document Release Content Information Bootloader RequirementsHardware Supported Please Read Before Upgrading the Phones to Release Before you UpgradeDescription Feature Description Network FeaturesSecurity Features XML FeaturesUser Interface Features Feature DescriptionSIP Features Troubleshooting FeaturesAccept out of order requests parameter to ignore Network Features Configuring LLDP-MED Using the Configuration Files Step Action Configuring LLDP-MED Using the IP Phone UILldp Packet Interval Configuring LLDP-MED Using the Aastra Web UICheck mark Select Basic Settings-Preferences-General Use Lldp ElinConfiguring Dhcp Option Override via the Configuration Files Dhcp Options 159 and 160 for the Configuration ServerOption Configuring Dhcp Option Override via the IP Phone UIConfiguring Dhcp Option Override via the Aastra Web UI Changing Dhcp Option 12 Hostname via the Configuration Files Dhcp Option 12 Hostname for the Configuration ServerChanging Dhcp Option 12 Hostname via the IP Phone UI Changing Dhcp Option 12 Hostname via the Aastra Web UI Click on Operation-Reset , and click RestartDefault Value Range Dhcp Option 77 User Class for the Configuration ServerConfiguring Dhcp Option 77 User Class via the IP Phone UI Configuring Dhcp Option 77 User Class via the Aastra Web UI Multiple Dhcp Servers Security Features Configuration File EncryptionConfiguring Configuration File Encryption Certificate Management Https Server Certificate ValidationCertificate Validation User InterfaceUpgrading to Release 2.3 of the IP Phones Https validate expires Press Change to toggle the Enable field to Yes or No Enable/Disable Https Server Certificate ValidationAastra Web UI TrustedCerts.pem XML Execute Commands for Playing a WAV File XML FeaturesXML Command Wav.Play XML Command Wav.StopIP Phone UI Screens During WAV Streaming Phone State Action When RTP Transmitting RTP Recording and Simultaneous Playing not supported onSending RTP Stream was being sent using this voice Receiving RTP Phone State Action When RTP ReceivingDialpad Passthrough for Objects ExamplesNon-Blocking Action URI New XML URI VariablesXML Web Applications Button XML Key Redirection Voicemail Option ParameterExample Parameter Icom script Options Key Redirection For Options Menu on all phones and Services Menu onOptions script XML Applications and Off-Hook Interaction Configuring the Off-Hook Interaction FeatureXML URI for Key Press Simulation XML Key URI Description Volume Key Feature KeysNavigation Keys For XML Post Messages XML Command Description Using XML Commands to Reset Local Data on the PhoneAction URI Disconnected Feature Parameter Aastra Web UI ExampleClick on Advanced Settings-Action URI-Event User Interface Features Preferred Line Focus FeaturePhone Feature Preferred Line Focus Behavior Range Example Configuring Preferred Line Focus via the Configuration FilesConfiguring Preferred Line Focus via the Aastra Web UI Dialpad Speeddial Supported on All Phones Creating a Speeddial Key using the IP Phone UIFor the 53i Click on Operation-Keypad Speed Dial Creating a Speeddial Key using the Aastra Web UIUTF- 8 Codec for Multi-National Language Support Time Zone Country Code/Time Time Zone Code Zone Name Addition of New Timezone and Country CodesSIP Features Asserted-Identity PAI Support in Update messageDtmf Tones in Info Requests Enabling/Disabling Out of Order SIP Requests Ignore Out of Sequence ErrorsSIP BLA Expires Timer Click on Advanced Settings-Global SIP-Advanced SIP Settings Configuring SIP BLA Expirey Timer Using the Aastra Web UITroubleshooting Features WatchDog Task FeatureEnabling/Disable WatchDog Using the Configuration Files Enable/Disable WatchDog Task Enabling/Disable WatchDog Using the Aastra Web UIIssue Number Description of Fix Issues Resolved in ReleaseRobustness Contacting Aastra Telecom Support Contacting Aastra Telecom Support Page Release Notes