From MiVoice Business Release 9.0 onwards, the system uses a self-signed SSL or enterprise Public Key Infrastructure (PKI) certificate instead of the Mitel Root Certificate in earlier releases.
Web browsers are designed not to trust self-signed or enterprise PKI certificates by default because there is no Certificate Authority to vouch for it. Attempting to connect to an untrusted web site results in a warning page like the one below from Firefox.
Figure 1 - Firefox Certificate Warning
Internet Explorer allows you to continue to the web site but displays the warning each time the site is visited. You can prevent this by adding the certificate to the browser's trusted sites list. Firefox handles the potential security threat by blocking the connection and making you create a security exception before letting you continue to the site. The exception can be permanent or one-time only. If you make it permanent, the warning page is never shown again.
NOTES:
You can apply to obtain a certificate from a Certificate Authority (CA) and use it to replace the self-signed certificate MiVoice Business provides or enterprise PKI certificate. See Security > Web Server in the Server Manager for details.
Third-party (generic) SIP sets may require a root level CA certificate to connect to the MiVoice Business system. See SIP Phone Support - Programming to obtain the certificate.
IMPORTANT
Any MiVoice Business system that is a target for reach through in the System Administration Tool must have its web server’s certificate trusted by the browser for the reach through to succeed. This also applies to attempts by the USC form to retrieve remote DNs and to other operations that require access to remote systems, including the distribution of applications to sets via the Phone Applications Update form. For more information, see Security > Web Server in the Server Manager for details.
Firefox treats logins by hostname/FQDN (e.g., https://myMiVB) and IP address as unique. Which means you need to create two security exceptions if you want to log in using both, one for the hostname and another for the IP address. Internet Explorer has no such requirement.
Click here to download the MiVoice Business self-signed or enterprise PKI certificate to your PC or laptop.
NOTE: The MiVoice Business self-signed or enterprise PKI certificate is applicable only to Internet Explorer, Chrome, and Edge browsers.
To install the MiVoice Business self-signed or enterprise PKI certificate using Microsoft Management Console (MMC), click here. (applies only to a PC running Windows 10 operating system)
To install the MiVoice Business self-signed or enterprise PKI certificate on Firefox, click here.
To install the MiVoice Business self-signed or enterprise PKI certificate on Chrome, click here.
To install the MiVoice Business self-signed or enterprise PKI certificate on Edge, click here.
NOTE: Windows 8.1 users encountering the following page must keep the default option, Current User.
In the search box on the taskbar, type
MMC, and press Enter.
The Console1 window is displayed.
On the File
menu, click Add/Remove Snap-in.
The Add or Remove Snap-ins window is displayed.
In the Available
snap-ins list, select the certificate you downloaded,
and click Add.
The Certificates snap-in window is displayed.
Click Finish.
The Add or Remove Snap-ins window is displayed and the certificate
is displayed in the Selected snap-ins list.
Click OK.
The Console1 window is displayed.
In the left pane, expand Certificates
-Current User, right-click Trusted
Root Certification Authorities, point to All
Tasks, and select Import.
The Certificate Import Wizard window is displayed.
Click Next.
In the File name box, enter the path to the certificate or click Browse to select the certificate, and click Next.
Click Next.
Click Finish.
A security warning message is displayed.
Click Yes.
A confirmation message is displayed.
Click OK.
If any browser is open, close and reopen
the browser.
The certificate is successfully installed.
Launch Firefox.
Connect to the MiVoice Business system. The following warning page displays:
Click Advanced followed by Add Exception...
Click Confirm Security Exception (Leave Permanently store this exception selected to keep the warning page from reappearing each time you try to log in to the System Admin Tool.)
NOTE: Permanent storage is only available when Firefox is configured to remember your browsing history.
Once you confirm the exception, the System Admin Tool login page will be displayed. You can now log in to MiVoice Business and not receive the security certificate warnings.
NOTE: If you are unable to log in, clear your browser cache, and then try again.
Open Chrome.
Click the More
options menu 
, and
then click Settings.
Scroll down and click Advanced.
In Privacy
and security section, click Manage
certificates.
The Certificates dialog
box appears.
Click Import.
The Certificate Import
wizard appears.
Click Next.
Click Browse, and then select the folder containing the downloaded certificate.
NOTE:
The latest version of Chrome does not allow the installation of certificates through the address bar.
If your site cannot be reached using the DNS name, Chrome continues to display the warning message that the site is not secure even after you install the MiVoice Business security certificate. To stop the warning message, you can do one of the following:
Use the corporate DNS to access the System Administration tool.
Configure the host file in your computer to map the IP address to the hostname that is defined in the system.
In Edge, the MiVoice Business self-signed or enterprise PKI certificate cannot be imported using the browser settings. The certificate can be installed only through Internet Explorer 11. The certificate imported to Internet Explorer 11 is also applicable for the Edge browser.