Manage tls certificates, Enroll with a certificate authority – Nortel Networks NN42030-300 User Manual
Page 33
Manage TLS certificates
33
Table 5
Common server license status errors (cont’d.)
Server
License Status
Issue description
Resolution
ERROR 103: Client’s
system clock is
suspect and/or the
client configuration
has been tampered
with.
This error indicates that the system
clock was changed after a previous
activation.
Reset the system clock and restart.
ERROR 17:
key limit exceeded
This error indicates that the license
file that you provided was activated
before on another machine and
there is no seat available for you to
activate.
Contact Nortel.
ATTENTION
If you start the MCG 3100 for the very first time without a valid license, errors
occur until you upload a valid license and restart the server. You must always
restart the MCG 3100 after you add or modify the license file.
Manage TLS certificates
A Public Key Infrastructure (PKI) uses Transport Layer Security (TLS)
certificates to provide server authentication and private communication.
With a PKI, the communication between the mobile clients and the
MCG 3100 server is secure.
Perform the following tasks to configure the PKI:
•
Enroll with a Certificate Authority (CA).
•
Generate a Certificate Signing Request (CSR).
•
Obtain a signed TLS certificate.
•
Obtain the CA root certificate, intermediate certificate, or both as
required by the CA..
•
Install the root or intermediate (or both as required by the CA) and
signed certificates.
•
Distribute the CA root certificate.
Enroll with a Certificate Authority
Some CAs, such as VeriSign or Entrust, charge a fee for their services.
Others, such as CACert or RapidSSL, provide free or low-cost solutions.
As an alternative to using a commercial CA, you can build your own. For
example, Microsoft Exchange Server includes tools that enable you to
build a CA server that is exclusive to your organization.
Nortel Mobile Communication 3100 Series Portfolio
Nortel Mobile Communication Gateway 3100 Installation and Upgrades
NN42030-300
02.03
Standard
9 May 2008
Copyright © 2007, 2008 Nortel Networks
.