This object is used to generate header encryption keys. A "Success" or "Failure" indication is returned. The SBC then adds the key-Id to each encrypted header based on which key is selected as the correct key for decryption.
The SBC stores up to two sets of keys at any given time. There is no limit to the number of times this command may be executed. Additionally, there is no specific time delay required before reissuing the command.
Generating new keys too frequently may lead to a situation where the SBC receives a request with an expired key-id (the current header encryption key is over-written due to the new key generation) causing unsuccessful decryption of headers. This may lead to call failures any calls caught in the transition to the new key-id.
On the SBC main screen, go to All > System > Security. The commands window is displayed.
Select Generate SIP Header Encryption Keys command from the drop-down list and click Select. A confirmation pop-up window appears.
Click Generate SIP Header Encryption Keys. A warning window is displayed.
Click OK. The result for this action is displayed.