03-06-2015, 05:21 AM
Hi Folks,
I'm tying to set my web server and phones to do mutual certificates exchange on HTTPS provisioning.
On the documentation i found:
+++++++++++++++++++++++++++++++++++++++++++++++++++
Certificates issued by Yealink Certificate Authority (CA) are pre-loaded on Yealink IP
phones and a custom certificate can be uploaded to Yealink IP phones. You can check
whether a built-in device certificate is installed on your phone via phone user interface
only. A built-in device certificate can be either a unique certificate (based on the MAC
address) or a generic certificate. Each certificate is issued by the Yealink Certificate
Authority (CA), so a server can verify that a device is truly a Yealink device (not a
malicious device or software masquerading as a Yealink device).
+++++++++++++++++++++++++++++++++++++++++++++++++++
So my question is:
1 - Where i cant get the Yealink CA to load on the server side ?
2 - How my webserver will know that the client(phone) certificate is valid since each device have a unique certificate ?
My firmware version is v 72 and i'm trying to build a no touch provisioning. Let me know if you need more info from my side.
Thanks in advance,
Ricardo.
I'm tying to set my web server and phones to do mutual certificates exchange on HTTPS provisioning.
On the documentation i found:
+++++++++++++++++++++++++++++++++++++++++++++++++++
Certificates issued by Yealink Certificate Authority (CA) are pre-loaded on Yealink IP
phones and a custom certificate can be uploaded to Yealink IP phones. You can check
whether a built-in device certificate is installed on your phone via phone user interface
only. A built-in device certificate can be either a unique certificate (based on the MAC
address) or a generic certificate. Each certificate is issued by the Yealink Certificate
Authority (CA), so a server can verify that a device is truly a Yealink device (not a
malicious device or software masquerading as a Yealink device).
+++++++++++++++++++++++++++++++++++++++++++++++++++
So my question is:
1 - Where i cant get the Yealink CA to load on the server side ?
2 - How my webserver will know that the client(phone) certificate is valid since each device have a unique certificate ?
My firmware version is v 72 and i'm trying to build a no touch provisioning. Let me know if you need more info from my side.
Thanks in advance,
Ricardo.