User guide
20
TLS Settings
If you select TLS or SIPS under the transport setting, this additional setting appears on
the page.
It may be possible to use secure communication without a certicate and make changes
to these settings. In some cases, if you choose TLS or SIPS, the SIP server requires a
certicate for user/client verication. This should be specied in the account information.
Youcan further increase security by requiring verication of the server, or the client
when the OmniTouch 4135 IP acts as a server for incoming calls.
Method The TLS includes a variety of security measures. The methods
are dened in the versions of the standard (SSL, SSL v2, SSL
v3, TLS v1, TLS v2). The default method is SSLv23, which ac-
cepts both SSL v2 and v3.
Negotiation timeout The TLS settings are negotiated during a call setup (both incom-
ing and outgoing). If this negotiation does not succeed within the
specied time (seconds) the negotiation is aborted. Timeout is
disabled with 0 (zero).
Verify client When set to On, the OmniTouch 4135 IP will activate peer
verication for incoming secure SIP connections (TLS or SIPS).
Require client certicate
When set to On, the OmniTouch 4135 IP rejects incoming secure
SIP connections (TLS or SIPS) if the client does not have a valid
certicate.
Verify server When the OmniTouch 4135 IP is acting as a client (outgoing
connections) using secure SIP (TLS or SIPS) it will always
receive a certicate from the peer. If Verify server is set to On,
the OmniTouch 4135 IP closes the connection if the server
certicate is not valid.
SETTINGS