You can configure client certificates to establish a secure connection. As per your requirement, you can choose how the server validates certificates for Avaya Aura® Device Services clients. Changing the certificate setting might affect the client’s ability to connect to Avaya Aura® Device Services.
Procedure
On the Avaya Aura® Device Services web administration portal, navigate to Client Administration > HTTP Clients.
Avaya Aura® Device Services displays the Client-Device Certificate Policy page.
To set the client certificate policy for the REST request, in the REST field, select the appropriate setting.
Note:
If the client certificate policy for an interface is set to OPTIONAL, OPTIONAL_NO_CA, or REQUIRED client certificates, when presented to the client:
Must have digitalSignature key usage if key usage information is present.
Must have id-kp-clientAuth if extended key usage is present. This is the TLS WWW client authentication extended key usage.
If the certificate does not have key usage information, the certificate allows all key usages.
To set the client certificate policy for the administrator UI (OAMP), in the OAMP field, select the appropriate setting.
