Certificate Authority and Clients

Certificate Authority and Clients

[Ref: How to Configure TLS with SIP Proxy ]

Table of Contents

Securing Communications through SSL Certificates revolves around a trust relationship between the client and the service (server) it is connecting to. In practise, the trust is with a 3rd party (Certificate Authority) who the client trusts to be “verifying” servers/clients and the certificates given to them.

Operating Systems, Internet Browsers, come with a “pre-set” number of “trusted” Certificate Authorities. This list, doesn’t include our “private” Certificate Authority.

Following is how you can “import” our “private” Certificate Authority for use on your client host.

Microsoft Windows

Use the Microsoft Management Console mmc.exe. You can find it by using the “Window” key, and “search” by typing in mmc.exe

From the Console, select the File Menu, and

  • Add/Remove Snap-in

With the “Add or Remove Snap-ins” dialog box.

  • Select Certificates from the available snap-ins

and then click Add >

The Window will change to the “Certificates Snap-in” dialog box;

  • Select “Computer Account”,

and click Next >

In the “Select Computer” dialog box;

  • Click Finish

You will be returned to the “Add or Remove Snap-ins” Window (dialog box).

  • Click OK

You will be returned to the “Console” with the “Certificates” Snap-in in the left column (window pane).

  • Expand the Certificates (Local Computer)
  • Right Mouse-Click on the “Trusted Root Certification Authorities”
  • Select All Tasks
  • Select Import…

With the Import Wizard, read the dialogue instructions and

  • Click Next
  • Find and select the certificate you wish to import
  • Click Next

Set the location to store the new Certificate Authority.

  • Click Next

We have a final confirmation screen

  • Click Finish

You should get “success” window.