Page History

Noprint

Panel

borderColor	green
bgColor	transparent
borderWidth	2

Back to Table of Contents

Back to CLI Configure Mode

Back to Profiles - CLI

Back to Security - CLI

The

Spacevars

0	product

EMA is enhanced to interface with the common certificate pool using the EMA TLS Profile. The certificates used for HTTPS are exported from the database to the local disk space, and then the EMA TLS Profile facilitates selecting a certificate from the pool and uploading it to the EMA. Two types of files are supported: p12 and pem, The SBC supports SHA-256 for certificate verification.

...

Parameter Length/Range Description

<EMA TLS Profile name>

1-23 characters

The name of the EMA TLS Profile.

Note
Only one EMA TLS Profile may be configured at any given time.

ClientCaCert N/A The name of the EMA-CA certificate associated with this EMA-TLS profile.

authClient

N/A

Set flag to "true" to force the EMA-TLS client to authenticate itself within TLS. If this field is set false,
the client must complete authentication within a higher level protocol once the EMA-TLS connection is up.

false
true (default)

ocspProfileName N/A The name of the OCSP profile associated with this EMA-TLS profile.

serverCertName N/A The name of the server certificate associated with this EMA-TLS profile.

v1_0

N/A

TLS protocol version 1.0.

enabled disabled (default)
enabled

v1_1

N/A

TLS protocol version 1.1.

disabled (default)
enabled

v1_2

N/A

TLS protocol version 1.2.

disabled
enabled (default)

Command Example

Code Block

language	none

% show profiles security EmaTlsProfile
EmaTlsProfile defaultEmaTlsProfile {
    authClient     true;
    serverCertName defaultSBCCert;
    v1_0           enableddisabled;
    v1_1           disabled;
    v1_2           enabled;
}

...

Space shortcuts

Page tree

Versions Compared

Old Version 2

New Version Current

Key

Command Example