User's Manual
SME VoIP System Guide, Version 2.6
Proprietary and Confidential
Chapter:
SME VoIP Administration Interface
52
5.10 Security
The security section is used for loading of certificates and for selecting if only trusted certificates are used.
Furthermore, web password can be configured.
The Security web is divided into three sections: Certificates (trusted), SIP Client Certificates (and keys) and
Password administration.
To setup secure fwu and configuration file download select HTTPs for the Management Transfer Protocol
(refer to management web).
SIP and RTP security is server dependent and in order to configure user must use the web option Servers
(refer to servers web).
5.10.1 Certificates
The certificates list contains the list of loaded certificates for the system. Using the left column check mark
it is possible to check and delete certificates. To import a new certificate use the mouse “select file” and
browse to the selected file. When file is selected, use the “Load” bottom to load the certificate.
The certificate format supported is DER encoded binary X.509 (.cer).
Screenshot
Certificates list
Parameter
Default Values
Description
Idx
Fixed indexes
Index number
Issued To
Empty
IP address – which is part of the certificate file
Issued To
Empty
Organisation, Company – which is part of the certificate file
Valid Until
Empty
Date Time Year – which is part of the certificate file
Screenshot
By enabling Use Only Trusted Certificates, the certificates the base will receive from the server must be
valid and loaded into the system. If no valid matching certificate is found during the TLS connection
establishment, the connection will fail. When Use Only Trusted Certificates is disabled, all certificates
received from the server will be accepted.
sNote: It is important to use correct date and time of the system when using trusted certificates. In case of
time/date not defined the certificate validation can fail.