...
If you do not have an SSL Certificate for encrypting your organization's web traffic, Managed by Switchvox should be set to YES.
| Table of Contents | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Managed by Switchvox
When Managed by Switchvox is YES, Switchvox auto-generates a certificate for internal web traffic. This CA Certificate is available on the CA Certs tab, at the top of the list. You can download a copy for use in a client that will communicate with Switchvox via HTTPS.
...
Obtain a certificate that can be verified.
Set Managed by Switchvox to Yes until you can obtain a verified certificate.
If your Switchvox is fully isolated from the public Internet, you may consider turning off the Digium Phones' requirement for a secured SSL environment with a valid SSL certificate. For details, see Managing the Switchvox SSL Certificate and Digium Phones.
Internal Certificate Authorities
...
If you are uploading your own Certificate Authority, and it includes intermediates, you may see the certificate bundle resemble:
-----BEGIN CERTIFICATE-----
MIIRandomData
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIIMoreRandomData
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIIEvenMoreRandomData
-----END CERTIFICATE-----
In this case, you should load each intermediate separately as its own CA (one complete "Begin" preamble, payload, and "End" post-amble each) - you will end up with 3 entries into Switchvox.
If you attempt to load all three into Switchvox as a single Certificate Authority, you will experience SSL error on connected devices, notably desk phones.
Prior Version: SERVER-NETWORKING (6.0)