You have the option to upload certificates for encrypted telephony onto your device and to check whether the existing certificate used by the SIP server to establish a TLS connection should be classified as trustworthy and accepted.
Upload the required certificate to your device with LANconfig by navigating to .
In LANconfig under select in section "Security", whereupon the SIP certificate should be checked:
- Verify server cert. acc. to:
- With this setting, you specify whether the certificate of the SIP server is verified against certain Certificate Authorities (CAs). The CA certificates from globally known certificate chains are updated with LCOS updates.
Server certificate No verification The server certificate is not verified. All valid server certificates are accepted, whichever CA they were signed by. This setting is useful for accepting self-signed certificates. All trusted CAs The server certificate is verified against all CAs known to the LANCOM. These include all CAs that LCOS "knows" to be trusted and also those from the SIP certificate slots 1 to 3. Note: The encrypted connection is only established if one of these certificates is validated successfully.SIP cert. slot 1 A check is made to see whether the server certificate was signed by the CA whose certificate was uploaded to slot 1 of the VoIP certificates. SIP cert. slot 2 A check is made to see whether the server certificate was signed by the CA whose certificate was uploaded to slot 2 of the VoIP certificates. SIP cert. slot 3 A check is made to see whether the server certificate was signed by the CA whose certificate was uploaded to slot 3 of the VoIP certificates. Telekom-Shared-Business-CA4 With this setting, the device only accepts server certificates signed by the Telekom Shared Business CA4 CA. Note: Use this setting for SIP trunk connections from Deutsche Telekom AG.