Contents

TLS authority certificate concepts

You can configure the certificate authority files that are used to validate devices connecting to the CIC server over SIP TLS lines. This is typically used when mutual authentication is required.

A <Default Line Authority Certificate> is automatically installed for you. The <Default Line Authority Certificate> is equivalent to the root certificate authority for lines. It is responsible for signing the default CIC line certificates.

In a switchover pair environment, the <Default Line Authority> certificate file is automatically replicated on the backup server as soon as the primary CIC server and the resident switchover service is started. If you import any new authority certificates on this tab, they are automatically replicated to the backup switchover server, if one is available.

Note: You can optionally include a third-party authority certificate in a Windows certificate store in order to enable Windows to recognize that the certificate is trusted. If you do not include the certificate in a Windows certificate store, the certificate status in CIC indicates that the certificate is not trusted by Windows. However, this status does not affect the security of the CIC system.