Views

Difference between revisions of "HTTPS Mutual Authentication"

The Wiki of Unify contains information on clients and devices, communications systems and unified communications. - Unify GmbH & Co. KG is a Trademark Licensee of Siemens AG.

Jump to: navigation, search
(Created page with "{{Breadcrumb|0|0|{{dev-en}}|OpenStage}} {{FD-Sytematics-Box | family = {{FD-Cat|OpenStage}} | model = {{FD-Cat|OpenStage 15}}<br/>{{FD-Cat|OpenStage 20}}<br/>{{FD-Cat|OpenSt...")
 
 
Line 12: Line 12:
  
 
In V3R0 there is support for mutual authentication by the phone of the HTTPS interface to a file server (for file downloads, including new software binds).
 
In V3R0 there is support for mutual authentication by the phone of the HTTPS interface to a file server (for file downloads, including new software binds).
 
 
In order to support mutual authentication for HTTPS the phone will need a new client certificate chain to be download by the DLS using the DLS-WPI.
 
In order to support mutual authentication for HTTPS the phone will need a new client certificate chain to be download by the DLS using the DLS-WPI.
 
Reason: For a file download the phone has to be authenticated with the client certificate at the https server.
 
Reason: For a file download the phone has to be authenticated with the client certificate at the https server.
  
 
{{Info|Please note that the DLS needs to be capable of sending such a client certificate down to the phone. This will be supported by DLS version V6.1!}}
 
{{Info|Please note that the DLS needs to be capable of sending such a client certificate down to the phone. This will be supported by DLS version V6.1!}}

Latest revision as of 10:41, 26 October 2011

Before V3R0 the phone did only support mutual authentication for 2 interfaces:

  • With the Radius server for 802.1x.
  • With the DLS for DLS-WPI.

In V3R0 there is support for mutual authentication by the phone of the HTTPS interface to a file server (for file downloads, including new software binds). In order to support mutual authentication for HTTPS the phone will need a new client certificate chain to be download by the DLS using the DLS-WPI. Reason: For a file download the phone has to be authenticated with the client certificate at the https server.

Please note that the DLS needs to be capable of sending such a client certificate down to the phone. This will be supported by DLS version V6.1!