Https server certificate validation settings – AASTRA 6700i series, 9143, 9480i, 9480i CT SIP Administrator Guide EN User Manual
Page 769
A-38
41-001343-01 Rev 03, Release 3.2.2
HTTPS Server Certificate Validation Settings
Parameter –
https block http post xml
HTTPS Server - Block XML
HTTP POSTs
(in Web UI)
IP Phone UI
Options->Administrator Menu->
Network Settings->HTTPS->
HTTPS Server->XML
Aastra Web UI
Advanced Settings->Network->
Advanced Network Settings
Configuration Files
aastra.cfg, <model>.cfg, <mac>.cfg
Description
Enables or disables the blocking of XML scripts from HTTP POSTs.
Some client applications use HTTP POSTs to transfer XML scripts. The
phones’s HTTP server accepts these POSTs even if server redirection is
enabled, effectively bypassing the secure connection. When this
parameter is enabled (blocking is enabled), receipt of an HTTP POST
containing an XML parameter header results in the following response:
“403 Forbidden”. This forces the client to direct the POSTs to the HTTPS
server through use of the “https://” URL.
Format
Boolean
Default Value
0 (disables blocking of XML HTTP POSTs)
Range
0 (disables blocking of XML HTTP POSTs)
1 (enables blocking of XML HTTP POSTs)
Example
https block http post xml: 1
Parameter–
https validate certificates
Validate Certificates
(in Web UI)
Configuration Files
aastra.cfg, <model>.cfg, <mac>.cfg
IP Phone UI
Options->Administrator Menu->
Configuration Server->HTTPS Settings->
Cert Validation
Aastra Web UI
Advanced Settings->Network->HTTPS Settings
Description
Enables or disables the HTTPS validation of certificates on the phone.
When this parameter is set to 1, the HTTPS client performs validation on
SSL certificates before accepting them.
Note: If you are using HTTPS as a configuration method, and use a self
signed certificate, you must set this parameter to “0” (disabled) before
upgrading to Release 2.3 of the IP Phones.
Format
Boolean
Default Value
1 (enabled)
Range
0 (disabled)
1 (enabled)
Example
https validate certificates: 0