This document is attempt to recreate content of original document created by famous @Patrick Born. Cisco has considered to destroy such valuable document for an unknown reason.
Cisco SPA series phones and ATAs can use certificate-authenticated HTTPS (SSL) sessions to ensure secure provisioning. For a provisioning server to be acceptable to the SPA phone or ATA, the server must present a certificate signed by Cisco's Certificate Authority (CA).
Over the years, we have added certificate authorities (CA) as needed and for administrative reasons.
If your SPA1xx or SPA232D ATA or SPA5xx IP Phone is running current or newer firmware, 1.3.3 or 7.5.6 respectively, use the newer "Cisco 2k Small Business CA" even though you could use any of the older CAs.
A HTTPS server used for device provisioning must use a certificate signed by the appropriate CA for the device.
Informations in such documents seems to be either obsolete or invalid from scratch. Most devices accept more than one CA, so multiple HTTPS server as suggested by document may be overkill in some cases. But I will leave original document above, because I can't test all types and firmware versions.
See table bellow for real cross-compatibility list. It is based on real test of mentioned devices.
Note: according Verisign (now Symantec) tech support, VeriSign Class 3 Secure Server CA based certificates are no longer issued. Class 3 Public Primary Certification Authority rooted certificates are sold under product name "Secure Site" and "Secure Site Pro".
Hello,I have 2 Cisco WAP 371:1.WAP371-A-K9 V01 fw 126.96.36.199 serial after new image 188.8.131.52 "53012" !!, external power adapter2.WAP371-E-K9 V02 fw 184.108.40.206 serial CCQ19310Txx, external power adapter After install new images 220.127.116.11 and reboot to factory,...
I have 3 unit WAP321 was faulty on the Power, just no led and no power, but after on for a moment you will feel heat for wap321, i have request for claim warranty ,after 3 week the replacement unit delivered , and i try to setup its fine , after the 2 mon...
hello, SG250x 48intervlan routing impossible...I have 3 vlan1 - with Static adress on vlan interface 192.168.1.254(gateway vlan1 computers)3 - with Static adress on vlan interface 192.168.3.254 (gateway vlan3 computers)100 - with Static adr...
Hi,Expecting your valuable support to find root cause of intermittent /random network disconnection happening for intervlan (intervlan routing handled by firewall) & intra vlan communication.Please find the attachment.01. Network architecture.02. All ...