Installation guide

ManualsBrandsMitel ManualsComputer equipment6800i Series

Administrator Level Options

41-001561-00 REV00 – 10.2014 3-29

Cert Validation Validate Certificates https validate certificates Enables or disables the HTTPS validation of certificates on the

phone. When this parameter is set to 1, the HTTPS client per-

forms validation on SSL certificates before accepting them.

Notes:

• If you are using HTTPS and the certificates are not valid or

are not signed by Verisign, Thawte, GeoTrust, Comodo,

Entrust, or CyberTrust, the phones fail to download config-

uration files.

• Defining this parameter as "0" (disabled) significantly

reduces security for the provisioning process to encryption

only. Validation of the chain-of-trust (i.e. the originator of

the files) will not be performed if this feature is disabled.

Therefore, disabling HTTPS validation of certificates is only

recommended for troubleshooting purposes or when self-

signed certificates are in use.

For more information, see Chapter 4, “HTTPS Server Certifi-

cate Validation” on page4-33.

Check Expires Check Certificate Expira-

tion

https validate expires Enables or disables the HTTPS validation of the expiration of

the certificates. When this parameter is set to 1, the HTTPS cli-

ent verifies whether or not a certificate has expired prior to

accepting the certificate.

Note:

If the “https validate expires” parameter is set to enable, the

clock on the phone must be set for the phone to accept the

certificates.

For more information, see Chapter 4, “HTTPS Server Certifi-

cate Validation” on page4-33.

Check Hostnames Check Certificate Host-

names

https validate hostname Enables or disables the HTTPS validation of hostnames on the

phone.

For more information, see Chapter 4, “HTTPS Server Certifi-

cate Validation” on page4-33.

N/A Trusted Certificates

Filename

https user certificates Specifies a file name for a .PEM file located on the configura-

tion server. This file contains the User-provided certificates in

PEM format. These certificates are used to validate peer certif-

icates.

Note:

To install a user-provided certificate through a configuration

server using the HTTPS protocol, you must temporarily disa-

ble the “https validate certificates”. After the certificate is

installed and you can re-enable the “https validate certifi-

cates” parameter.

For more information, see Chapter 4, “HTTPS Server Certifi-

cate Validation” on page4-33.

Parameter In

IP Phone UI

Parameter in

Mitel Web UI

Parameters in Configuration

Files

Description