Collapse AllExpand All

18.8.5.1.1. Configuration Previous topic Parent topic Child topic Next topic

MTLS for HFA is indirectly enabled or disabled via option Certificate Verification Level in HG3500 WBM. This option is located in menu:
Configuration > Security > Signaling and Payload Encryption (SPE) > SPE Security Setup > HFA/H.323 TLS Parameters.
In order to adjust settings single click on SPE Security Setup.

Figure 414. HFA SPE Configuration

Edit_SPE_Security_Setup-2.PNG
When verification level is set to Trusted or Full, client certificate is requested and verified during SSL/TLS handshake. Client certificate must be signed by some trusted CA, whose public key certificate must be present on CGW (more CA certificates can be present).
${DocTitle}, ID: ${DocID}
© 03/2026 Mitel Networks Corporation. All rights reserved. Mitel and the Mitel logo are trademark(s) of Mitel Networks Corporation. Unify and associated marks are trademarks of Unify Software and Solutions GmbH & Co. KG. All other trademarks herein are the property of their respective owners.