Manualshelf

Installation guide

ManualsBrandsShoreTel ManualsComputer equipmentShoreWare
401402403404405406407408409410
About the Security Certificate Reverse Proxy Servers for ShoreTel Communicator on iPhone
E
ShoreTel 14.2 Planning and Installation Guide 403
Copy the Httpd-vhosts.conf fild from the %Apache Software
Foundation\Apache2.2\conf\extra folder and place it in the %\Apache Software
foundation\Apache2.2\conf folder.
This will be where the system will look for the required config files.
Copy the certificate files that you get from the certificate authority to the % \Apache Software
Foundation\Apache2.2\conf folder.
Follow the instructions given to prepare the httpd.conf and the httpd-vhosts.conf files.
About the Security Certificate
To use Apache for the reverse proxy, you must use an SSL certificate for Apache. You can order an
SSL certificate from a root certificate authority. If the certificate authority does not provide a certificate
for Apache, you can convert a Windows certificate to the Apache format. Apache SSL certificates have
a different format than the Microsoft Windows SSL certificate.
Before you create a script, make sure that your SSL certificates conform to the Apache format. If you
are ordering an SSL certificate for this application, ask for the Apache format.
This section provides information about the Windows and Apache certificate formats and describes
how to convert the Windows format to Apache format.
Identifying Windows SSL Certificates
SSL certificates for Windows usually use one of the following formats:
PCKS#12/PFX file format with a .pfx or .p12 extension.
PCKS#7/PFX (or P7B) file format with a .p7b or .p7c extension.
PCKS#12/PFX is a binary formats that imbeds the certificate, intermediate certificates, and the private
key into one encrypted file.
Note
The certificate you purchase must match the machine name that you want the proxy to be. We highly
recommend that you change the machine name to something that reflects this machine as your proxy
because it will also be the name that your users enter on their iPhone for the server name. For
example, the machine name might be proxy.yourdomain.com or gateway.yourdomain.com where
proxy or gateway reflect the same exact name on the certificate that you order. You must also contact
your name server provider so that you can ping the machine name from the internet.
Note
You must also contact your name server provider so that you can ping the Apache server from the
Internet.Network propagation of a machine names can take some time, upwards of three hours for
some ISP providers. Please remember this when contacting your ISP.