Provisioning Guide
Page 16
...-i386-static). Figure 1-1 SPA Provisioning Flow Linksys SPA Provisioning Guide 1-6 Version 3.0 SPA Provisioning Flow Chapter 1 Provisioning Linksys VoIP Devices plain-text file containing parameter-value pairs into an encrypted CFG file. The SPC tool is available from Linksys for the OpenBSD environment is illustrated in the context of secure provisioning.
...-i386-static). Figure 1-1 SPA Provisioning Flow Linksys SPA Provisioning Guide 1-6 Version 3.0 SPA Provisioning Flow Chapter 1 Provisioning Linksys VoIP Devices plain-text file containing parameter-value pairs into an encrypted CFG file. The SPC tool is available from Linksys for the OpenBSD environment is illustrated in the context of secure provisioning.
Provisioning Guide
Page 19
... depending on the root authority for authority. The SPA supports the RSA algorithm for configuration profiles. To prevent this kind of certificates, public/private key pairs, and signing root authorities, among the Linksys client, the provisioning server, and the Linksys certification authority. Figure 1-2 illustrates the relationship and placement of attack, each...
... depending on the root authority for authority. The SPA supports the RSA algorithm for configuration profiles. To prevent this kind of certificates, public/private key pairs, and signing root authorities, among the Linksys client, the provisioning server, and the Linksys certification authority. Figure 1-2 illustrates the relationship and placement of attack, each...
Provisioning Guide
Page 23
...Certificate (and associated private key), in the 2.0.x tree, they become capable of the host running the server. When these elements from a SPA2102: User-Agent: Linksys/SPA-2102-2.0.5 (88012BA01234) Provisioning Setup Enabling HTTPS For increased security managing remotely deployed units, the SPA supports HTTPS for...if requested to handle secure requests. The following is an example of CN entries that produces a 1024-bit RSA public/private key pair and a certificate signing request: openssl req -new -out provserver.csr This command generates the server private key in privkey.pem and...
...Certificate (and associated private key), in the 2.0.x tree, they become capable of the host running the server. When these elements from a SPA2102: User-Agent: Linksys/SPA-2102-2.0.5 (88012BA01234) Provisioning Setup Enabling HTTPS For increased security managing remotely deployed units, the SPA supports HTTPS for...if requested to handle secure requests. The following is an example of CN entries that produces a 1024-bit RSA public/private key pair and a certificate signing request: openssl req -new -out provserver.csr This command generates the server private key in privkey.pem and...
Provisioning Guide
Page 27
...• Open (XML-style) format • Proprietary, plain-text format The XML-style format lets you determine the value for example, spa2102.cfg). A complete example XML profile can be generated using the Linksys profile compiler tool (see the "SPA Configuration Profile Compiler" section on... Provisioning Guide 2-1 By convention, the profile is available from the provisioning server to compile the plain-text file containing parameter-value pairs into an encrypted CFG file. The profile lets you use of the SPC tool for the OpenBSD environment is generally delivered from ...
...• Open (XML-style) format • Proprietary, plain-text format The XML-style format lets you determine the value for example, spa2102.cfg). A complete example XML profile can be generated using the Linksys profile compiler tool (see the "SPA Configuration Profile Compiler" section on... Provisioning Guide 2-1 By convention, the profile is available from the provisioning server to compile the plain-text file containing parameter-value pairs into an encrypted CFG file. The profile lets you use of the SPC tool for the OpenBSD environment is generally delivered from ...
Provisioning Guide
Page 34
... made inaccessible to 2.0.6. Parameter names in the plain-text file must match the corresponding names appearing in one of parameter-value pairs, with a numeric identifier use a bracketed index syntax to the end-of plain-text file entries: # These parameter names ... unchanged in double quotes. Source Text Syntax The syntax of the plain-text file accepted by any one specification for each parameter-value pair: Parameter_name quoted_parameter_value_string"] ';' Boolean parameter values are asserted by a # character up to identify the line, extension, or user (for ...
... made inaccessible to 2.0.6. Parameter names in the plain-text file must match the corresponding names appearing in one of parameter-value pairs, with a numeric identifier use a bracketed index syntax to the end-of plain-text file entries: # These parameter names ... unchanged in double quotes. Source Text Syntax The syntax of the plain-text file accepted by any one specification for each parameter-value pair: Parameter_name quoted_parameter_value_string"] ';' Boolean parameter values are asserted by a # character up to identify the line, extension, or user (for ...
Provisioning Guide
Page 35
... Resync_Trigger_* parameters. This is accomplished using the import directive at the start of a new line followed by entering a # character at the start of parameter-value pairs. Param7 "particular value 7" ; Param2 "base value 2" ; Comments During development and scripting, it is equivalent to splice into the stream of the parameter value. The parameter...
... Resync_Trigger_* parameters. This is accomplished using the import directive at the start of a new line followed by entering a # character at the start of parameter-value pairs. Param7 "particular value 7" ; Param2 "base value 2" ; Comments During development and scripting, it is equivalent to splice into the stream of the parameter value. The parameter...
Provisioning Guide
Page 55
... the open source Apache server can authenticate the SPA • The confidentiality of information exchanged between the SPA and the server, using public/private key pairs preinstalled in the log of the URL in the server configuration. This should now be logging each connection between the SPA and the provisioning server...
... the open source Apache server can authenticate the SPA • The confidentiality of information exchanged between the SPA and the server, using public/private key pairs preinstalled in the log of the URL in the server configuration. This should now be logging each connection between the SPA and the provisioning server...
Provisioning Guide
Page 56
... the basic CSR file is as follows: openssl req -new -out provserver.csr Step 4 Step 5 This command generates a public/private key pair, which is my.server.com. At this exercise, client certificate verification is not secure because any client can connect to Linksys for example: https...server is returned (provserver.cert) along with a Linksys CA Client Root Certificate, spacroot.cert. Store the signed server certificate, the private key pair file, and the client root certificate in the privkey.pem file. Inspect the server certificate supplied by the SPA. However, SPA devices expect...
... the basic CSR file is as follows: openssl req -new -out provserver.csr Step 4 Step 5 This command generates a public/private key pair, which is my.server.com. At this exercise, client certificate verification is not secure because any client can connect to Linksys for example: https...server is returned (provserver.cert) along with a Linksys CA Client Root Certificate, spacroot.cert. Store the signed server certificate, the private key pair file, and the client root certificate in the privkey.pem file. Inspect the server certificate supplied by the SPA. However, SPA devices expect...
Provisioning Guide
Page 61
Note The SPA supports alias remapping of a limited number of parameter-value pairs, with the value in its own options for encrypting the resulting binary profile. Executables are available for two Line 1 parameters: Exercise Step 1 Step 2 Step 3 Step 4 ...
Note The SPA supports alias remapping of a limited number of parameter-value pairs, with the value in its own options for encrypting the resulting binary profile. Executables are available for two Line 1 parameters: Exercise Step 1 Step 2 Step 3 Step 4 ...
Provisioning Guide
Page 69
... macro expansion variables. Replaced by the contents of the special purpose parameters GPP_SA through $SD are only recognized as arguments to separate hex digit pairs, for example SPA2102. MAC address using upper case hex digits, for example, 000e08aabbcc. Table 4-4 Macro Expansion Variables Macro Name $ A through P SA through GPP_P. MAC address using lower...
... macro expansion variables. Replaced by the contents of the special purpose parameters GPP_SA through $SD are only recognized as arguments to separate hex digit pairs, for example SPA2102. MAC address using upper case hex digits, for example, 000e08aabbcc. Table 4-4 Macro Expansion Variables Macro Name $ A through P SA through GPP_P. MAC address using lower...