This page describes the process of importing Trusted Root CA Certificates, using either the File Upload or Copy and Paste methods.
Importing a Trusted Root CA Certificate
Before you begin: you must obtain a Trusted Root CA Certificate before you can proceed - your options are:
- Contacting your System Administrator or Certificate Vendor (e.g., Verisign), or
- Obtaining the Trusted CA certificate from your local Standalone Windows Certificate Authority
When importing a new certificate, make sure the root certificate is still valid and hasn't expired.
- In the WebUI, click the Settings tab.
In the left navigation pane, go to Security > SBC Certificates > Trusted CA Certificates.
When the Verify Status field in the Certificate panel indicates Expired or Expiring Soon, the Trusted CA Certificate must be replaced. The old certificate must be deleted before a new certificate can be successfully imported.
To import a Trusted CA Certificate:
Click the Import Trusted CA Certificate () Icon.
- Select either Copy and Paste or File Upload from the Modemenu.
- If you choose File Upload, use the Browse button to find the file.
- Click OK.
Verifying the Trusted Root CA Certificate
In the Trusted CA Certificate Table page:
- View the certificate's details by clicking the popup( ) icon next to the entry you want to view.
- Under the the Certificate panel, ensure that the Verify Status field indicates OK.
If the Verify Status field does not indicate OK, repeat the import steps again to obtain a valid certificate.
- Trusted Root CA certificates with a 4096 RSA Key are supported, but have not been thoroughly tested.
- Server (SBC Edge) certificates with a 4096 RSA Key are not supported due to the amount of time required to generate a key and process calls.