A-110
41-001343-01 Rev 02, Release 3.2.2
Transport Layer Security (TLS) Settings
To configure TLS, you must enter the “
sip transport protocol
” parameter with a value of “
4
”
(TLS). See the “sip transport protocol” description on
page A-104
.
Also enter the following parameters in the configuration files to configure TLS:
Parameter
–
sips persistent tls
Configuration Files
aastra.cfg, <model>.cfg, <mac>.cfg
Description
Enables or disables the use of Persistent Transport Layer Security (TLS).
Persistent TLS sets up the connection to the server once and re-uses that
connection for all calls from the phone. The setup connection for
Persistent TLS is established during the registration of the phone. If the
phones are set to use Persistent TLS, and a call is made from the phone,
this call and all subsequent calls use the same authenticated connection.
This significantly reduces the delay time when placing a call.
Notes:
1.
Persistent TLS requires the
outbound proxy server
and
outbound
proxy port
parameters be configured in either the configuration files or the
Aastra Web UI (
Advanced Settings->Global SIP->Basic SIP Network
Settings
). There can be only one persistent TLS connection created per
phone. The phone establishes the TLS connection to the configured
outbound proxy.
2.
If you configure the phone to use Persistent TLS, you must also
specify the
Trusted Certificate
file to use. The Root and Intermediate
Certificates, Local Certificate, and Private Key files are optional.
Format
Boolean
Default Value
0 (disabled)
Range
0 (disabled)
1 (enabled)
Example
sips persistent tls: 1
Parameter
–
sip persistent tls keep alive
Configuration Files
aastra.cfg, <model>.cfg, <mac>.cfg
Description
When enabled, the configured value indicates frequency (in seconds) that
phone will send the keep alive messages.
Format
Integer
Default Value
0 (disabled)
Range
0-3600
Example
sip persistent tls keep alive: 10