Loading Certificates to Phones
The following shows how to load user certificates to a single device and to multiple devices. Before loading certificates, put the certificate files in a designated folder.
Certificates can be downloaded using:
|
■
|
Device Manager (see the Device Manager Administrator's Manual) |
|
■
|
Android Device Utility as shown here: |
|
●
|
The extension of the device certificate file must be .crt |
|
●
|
The extension of the private key must be .key |
|
●
|
Device certificates can be provisioned in .pfx file format (combining .crt and .key). The following parameter values can be configured in the devices’ Configuration File: |
|
✔
|
/security/device_certificate_url = <url>/certificate.pfx |
|
✔
|
/security/device_private_key_url = NULL |
|
✔
|
security/device_certificate/password=<pfx password> |
|
●
|
The extension of the CA certificate file must be .crt. It's possible to load up to 5 CA certificates to the phone using the placement selector (0-4) (Default: 0). |
|
●
|
The IP address of the PC on which the certificate files are stored must be entered as shown here: |
|
●
|
The loaded certificate's file name must be without spaces. Spaces between words can be created using an underscore _ |
|
●
|
The CA certificate (ca_cert) can also be loaded to devices using AudioCodes' Device Manager, in the 'Template' screen. |
|
●
|
Certificate loading is performed using HTTP. Prior to version 1.19, it was performed using SCP. The HTTP port is 8000. Make sure the port is not blocked by the organization’s firewall. |