Page History
| Noprint | |||||||||
|---|---|---|---|---|---|---|---|---|---|
|
The BMC web application is available via TLS-secured (https) access either directly through port 443 or indirectly through port 80 to 443. ACL rules are not applicable to prevent unsecured (http) access. A sample X.509 certificate which is a copy of the BMC, and EMA certificates are shipped along with the SBC shipment. The size of this certificate is 2,048 bits.
The BMC uses the common local certificate store of the SBC (used also for SIP/TLS) rather than having its own separate certificate store. Certificate with RSA keys up to 4,096 bits are supported. However, Sonus recommends using 2,048 bit certificates.
...
The BMC also provides the interface which uploads the self-signed certificate to replace the sample X.509 certificates.
| Note | ||||||||
|---|---|---|---|---|---|---|---|---|
The SBC
|
...
Use the following procedure to upload self signed certificates using BMC:
- Login to the SBC BMC
BMC using the IP address configured in the previous section.Spacevars 0 product
At the prompt, enter:
Username:root
Password:superuser
The SBC BMC
BMC main screen appears.Spacevars 0 product Click Configuration tab. The Configuration screen is displayed.
Caption 0 Figure 1 Configuration Screen From the Options menu, click SSL Certificate. The SSL Upload screen displays.
Caption 0 Figure 1 SSL Upload Screen Click Choose File from the New SSL Certificate field, and then from the Open dialog, browse to and select the BMC certificate.
Caption 0 Figure 1 Selecting BMC Certificate - Click Open.
Click Upload to upload the new BMC certificate.
Caption 0 Figure 1 Uploading SSL Certificates Follow steps 4 through 6 to upload the Default Privacy Key. Once completed, a successful upload message appears.
Caption 0 Figure 1 Successful Upload Message - Restart the BMC web server to use the new SSL Certificate.
...
Overview
Content Tools