Manualshelf

Specifications

ManualsBrandsShoreTel ManualsComputer equipmentMobility Router 4000
81828384858687888990
Managing Security Importing a Certificate to the Mobility Router
7
ShoreTel Mobility Router Administration Guide 74
Importing a Certificate to the Mobility Router
You can also import a purchased or self-signed certificate for any of the four Mobility Router
certificates. For example, if you purchased a certificate from VeriSign, that certificate can be imported
and used by the Mobility Router.
1. Select Configuration > System > Certificate > Mobility Router.
a. If you are running a Mobility Router in a standalone environment, select Standalone
or
b. If you are running a Mobility Router in a clustered configuration, select Clustered.
2. Click Import. The Import Certificate window displays.
3. Paste the Mobility Router certificate issued by the trusted certificate authority, RSA private key,
and the intermediate and root certificates you may have received from the certificate signing
authority. Be sure to include both “BEGIN” and “END” statements for all information in the following
order:
Mobility Router signed certificate
RSA private key
Any certificate chain/bundle that may have been included from the certificate authority
Note
The Mobility Router's local access certificate is used for the secure connections initiated from the
internal network; the remote access certificate is used for the secure connection initiated from the
external networks such as homes and hotspots. ShoreTel recommends use of FQDN rather than IP
address for imported remote access certificates.
Note
The following example generates a clustered Remote Access certificate.
Note
The text in the following window displays an example of section of a certificate, beginning with a
portion of the Mobility Router signed certificate, the RSA private key, and a portion of the bundle the
certificate authority included for the Mobility Router certificate. Be sure to use unencrypted certificates
and the private key in unencrypted PEM format. In addition, be sure to add an empty line (press Enter)
between the line “END RSA PRIVATE KEY” and “BEGIN CERTIFICATE”, as shown.