Versions Compared

Old Version 3

changes.mady.by.user Ribbon Communications

Saved on

compared with

New Version 4

changes.mady.by.user Ribbon Communications

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Panel
bgColor#FAFAFA
borderStylenone

The Validate Server FQDN is an enhanced security feature of the Sonus SBC 1000/2000, which is disabled if the common name in the certificate is an IP address ( a practice observed by some ITSP's). This field is only visible when Validate Peer Server Certificate is enabled and Mutual Authentication is disabled.

Validate Server FQDN (enabled) option allows the Sonus SBC 1000/2000 to perform an FQDN match of an incoming peer certificate common name (CN) or Subject Alternate Name (SAN) against the host that is configured in the SIP Server table of Sonus SBC 1000/2000 (protocol must be TLS and the Host must be in the form of FQDN).

Note
  • Sonus SBC 1000/2000 does not validate IP addresses to identify a peer server, but only Fully Qualified Domain Names (FQDN).
  • Make sure this parameter is set to Disabled if the peer server is using an IP address.

Mutual Authentication

Panel
bgColor#FAFAFA
borderStylenone

Enables the Mutual authentication request and verifications of the SIP peer client certificate.

Note

This setting is part of the standard level of Mutual TLS security. Mutual Authentication includes a check on the certificate dates for certificate validity and whether the certificate is signed by a local trusted root CA.

...