Page History
You can change the certificate installed on the Sonus SBC 1000/2000 system by obtaining the signed certificate from a Trusted CA or from a local Stand-Alone Windows Certificate Authority, and importing it as outlined in the instructions on this page.
Importing a Server Certificate
| Note | ||
|---|---|---|
| ||
Before importing a new Signed Server Certificate, you must first import a valid Trusted CA Certificate. |
...
- In the WebUI, click the Settings tab.
In the left navigation pane, go to Security > SBC Certificates > Sonus Certificate.
Key Usage Field Descriptions
Enhanced Key Usage
| Panel | ||||
|---|---|---|---|---|
| ||||
This field displays the enhanced key usage regarding the purposes for which the subject's public key may be used. |
Key Usage
| Panel | ||||
|---|---|---|---|---|
| ||||
Displays the key usage for defining the purposes of the key contained in the certificate. |
...
Select PKCS12 Certificate and Key from the Importmenu at the top of the page.
- Enter the password used to export the certificate in the Password field.
Browse for the PKCS certificate and key file.
Info icon false You must use the same password as was used when exporting the certificate and key.
- Click OK
Verifying the Signed Server Certificate
Once you have imported the Signed Server Certificate:
- In the Issuer panel, ensure the Common Name field has changed from Self-Signed to the issuer's Common Name.
- In the Certificate panel,
- Ensure that the Enhanced Key Usage field indicates TLS Web Server Authentication.
Ensure that the Verify Status field indicates OK.
If the Verify Status field does not indicate OK, repeat the steps aboveto obtain a valid certificate.Info icon false According to RFC3280, the Netscape CertType field is obsolete and has been replaced by the X509v3 Key Usage field.
Most modern browsers require the Enhanced Key Usage field for certificate acceptance based on use purpose.
...
Overview
Content Tools