Installation guide
TLS-GLOBAL CONFIGURATION ELEMENTS N-Z
Version S-C6.1.0 Oracle Communications Session Border Controller ACLI Reference Guide 269
Notes The test-translation element can also be configured in Superuser mode as a
command.
tls-global
The tls-global configuration element allows you to configure global TLS
parameters.
Syntax tls-global <session-caching | session-cache-timeout | select | no
| show | done | exit>
Parameters session-caching—Enable or disable the Net-Net SBC’s session caching capability
Default disabled
Values enabled | disabled
session-cache-timeout—Enter the session cache timeout in hours
Default 12
Values Min: 0 (disabled) / Max: 24
Path tls-global is an element of the security path. The full path from the topmost ACLI
prompt is: configure terminal > security> tls-global.
Release First appearance: 5.0
RTC Status Supported
tls-profile
The tls-profile configuration element holds the information required to run SIP over
TLS.
Syntax tls-profile <name | end-entity-certificate | trusted-ca-
certificates | cipher-list | verify-depth | mutual-authenticate |
tls-version | select | no | show | done | exit>
name—Enter the name of the TLS profile
end-entity-certificate—Enter the name of the entity certification record
trusted-ca-certificates—Enter the names of the trusted CA certificate records
cipher-list—Enter the default ALL, or enter a list of supported ciphers which you
can find in the TLS section of the Net-Net 4000 ACLI Configuration Guide’s Security
chapter. As of Release S-C6.1.0, TLSv1 and SSLv3 have been removed made
redundant by the tls-version parameter).
Default all
verify-depth—Enter the maximum depth of the certificate chain that will be
verified