Certificate Authority configuration checklist

Last Updated : Oct 03, 2018 |

You must have the CA that is used to sign certificates for internal components.

  • In a single FQDN for all services deployment, certificates for internal components are usually signed by the System Manager CA.

  • In a multiple FQDN deployment, certificates for internal components are usually signed by a public CA.

To configure a CA, perform the tasks outlined in the following checklist:

No.

Task

Notes

1

Install the CA on the Avaya SBC.

See Installing a CA certificate on Avaya SBC.

Provide a descriptive name for the CA. For example: certificateAuthority.

2

Create a TLS client profile.

See Creating a TLS client profile.

When creating the profile, use the CA that you installed in the previous step.

Provide a descriptive name for the profile. For example: certificateAuthorityTlsProfile.
Related information
Reverse proxy configuration checklist for a single FQDN deployment
Reverse proxy configuration checklist for a multiple FQDN deployment