The MSL server includes its own unique certificate authority (CA), named "Mitel Networks," which is associated with the Mitel root CA. You can use this service to issue digital certificates to applications that require securely authenticated connections, such as MiContact Center.
To begin the process of obtaining a certificate, the client application issues a certificate signing request (CSR) to the Mitel Networks CA on the MSL server. For details on how to do this, consult your application documentation. When the MSL server receives the CSR, it will appear in a queue on the Certificate Management panel. You must then approve the CSR and issue the certificate by following the procedure found below. After these steps are complete, authenticated connections will be possible.
If necessary, you may also reject CSRs that are pending approval, and revoke certificates that have previously been approved.
Note:
Before approving a CSR, you should establish the requester's identity by telephone or email. If you approve a CSR without being certain of the requester's identity, you may open a security breach in your network.
The MSL server is limited to accepting 50 concurrent CSRs.
To approve or reject a CSR:
Log into the MiCollab Server Manager.
Under Security, click Certificate Management. Certificate requests waiting for approval appear under the heading Queued CSRs.
Click the Certificate ID link.
After confirming the requester, do one of the following:
Click Cancel to return to the Certificate Management main screen without approving/rejecting the request.
Click Approve
to approve the CSR.
Note: The approved CSR is listed
as a certificate under the heading Approved
Certificates. It can take
up to two minutes for the approved certificate to appear.
Click Reject
to remove the CSR from the list.
Note: If you reject the request,
the requester must regenerate it.
To revoke an approved certificate:
Generated certificate numbers are unique. If you need to re-issue a certificate for a specific requester (for example, in the case of hardware failure or theft), you must first revoke the existing certificate.
Note: Do not use this option to disable a set.
Log into the MiCollab Server Manager.
Under Security, click Certificate Management. Approved certificates appear under the heading Approved Certificates.
Click the Certificate ID link and then click Revoke. The requester can now make another request.
To view details regarding Mitel's signing certificate:
Log into the MiCollab Server Manager.
Under Security, click Certificate Management.
View details at the top of the page:
Field Name |
Details |
Issuer |
Lists the following information for the certificate authorization company that issued the certificate: |
C: country code |
|
ST: state or province |
|
L: locality name (for example: city name) |
|
O: name of the certificate authorization authority: "Mitel Networks" |
|
OU: name of the organizational unit |
|
CN: server hostname |
|
Authority/ emailAddress: email address of the Certificate Authority |
|
Subject |
Lists the following information for the certificate holder: |
C: country code |
|
ST: state or province |
|
L: locality (for example, city name) |
|
O: organization name (your company name) |
|
OU: organizational unit (for example, department name) |
|
CN: MBG Web Proxy server hostname |
|
Not before |
Date and time when the certificate takes effect. |
Not after |
Date and time when the certificate expires. |