Contents

SIP line TLS security options

The following table describes the options that you can use to configure TLS security options for a SIP line. The behavior of TLS communication depends on the capabilities of the devices that use this SIP line.

For information on how to access these options, see Configure a SIP line.

Note: The TLS Security options are available only if you select TLS as the transport protocol on the Transport dialog box.

Changes to any of the options on this dialog box take effect immediately.

Option	Description	Default
TLS Options
Require mutual authentication	Determines whether the CIC server requests a certificate from the SIP device and authenticates it. Note: This option works if the devices that use the SIP line support the capability to perform a mutual authentication. The SIP device then requests a certificate from the CIC server, validates it, and establishes a secure TLS connection. This one-way authentication of the server is sufficient to ensure the SIP device is connecting to the proper CIC server. By default, a SIP device using TLS to connect to the CIC server must contain the CIC line certificate authority (CA) certificate in order to authenticate the CIC server when it connects.	Not selected
Certificates	Displays the list of authority certificates that are selected for this SIP line. You can select additional authority certificates if you plan to use an external third-party certificate authority to sign line certificates. For more information, see Select certificate authorities for a SIP line. Click Configure certificates and port mappings… to open the SIP/TLS Configuration dialog box. Note: For more information, see PureConnect Security Features in the Technical Reference Documents section of the PureConnect Documentation Library.	<Default Line Authority Certificate>