Technical Newsletter SME 2025/03

As announced in our technical newsletter SME 2025/02 from June 11th, 2025, Unify Phone servers were updated to new SSL certificates on Sunday, June 29 2025.

As advised in the newsletter, manual action is required on OpenScape Business side to ensure continuous Unify Phone interworking. There are three options:

1) Update the customer systems to V3R4 FR1 Hotfix 3 (V3R4.1.1_005), or
2) Update the customer systems to V3R4 FR1 GA Update software (V3R4.1.0_639), or
3) Import the new certificates manually via Admin Portal.
For this purpose, the relevant new certificates will be provided for download from the SWS server as an attachment to the aforementioned releases. They are also attached to this newsletter.

The import of Root.cer and phoneapp_unify_com_cert.cer can be performed via OpenScape Business Admin Portal: 

Expert Mode - Telephony Server - Security - Signaling and Payload Encryption (SPE) - SPE CA Certificate(s)

Select the *.cer files one by one, click "View Fingerprint of Certificate" - click "OK" - then you can click "Import Certificate from File".

After uploading the certificates, a restart of the Unify Phone trunk is required to reestablish the Unify Phone trunk connection.

If you face Unify Phone connectivity problems since yesterday even after uploading the new certificates in the previous days, please also perform a Unify Phone trunk restart.

Fingerprint of the new certificates:

Root.cer
Valid until: Monday, 01/18/2038 23:59:59
Serial #: 01:FD:6D:30:FC:A3:CA:51:A8:1B:BC:64:0E:35:03:2D
SHA1 Fingerprint: 2B:8F:1B:57:33:0D:BB:A2:D0:7A:6C:51:F7:0E:E9:0D:DA:B9:AD:8E

SHA256 Fingerprint: E7:93:C9:B0:2F:D8:AA:13:E2:1C:31:22:8A:CC:B0:81:19:64:3B:74:9C:89:89:64:B1:74:6D:46:C3:D4:CB:D2

phoneapp_unify_com_cert.cer
Valid until: Thursday, 06/04/2026 23:59:59
Serial #: 70:12:72:6A:91:BE:C8:7C:A4:B4:36:8D:DD:7B:53:52
SHA 1 Fingerprint: 70:2F:7F:42:CD:BD:AC:6C:86:3C:56:48:7C:90:CF:E7:89:09:1B:76
SHA256 Fingerprint: 87:6E:F2:DC:7A:8E:CE:1E:CA:FC:3B:D6:95:21:A3:EF:1F:7C:9D:EA:1D:98:96:D4:55:AA:27:13:CE:75:84:16

Technical Newsletter SME 2025/02:

For security reasons, the SSL certificates used for secure communication between OpenScape Business and Unify Phone servers have a limited validity time and need to be frequently updated on both ends.

On OSBiz side, we usually prepare these updates and release new software early before the previous certificate expires.

Unfortunately, our certificate authority of choice has recently sold this business area to another CA, which means that underlying certificates of the trust chain have been changed on short notice.

We are bundling all new certificates required for a continuous operation of Unify Phone with OpenScape Business to the following OSBiz releases:

- V3R4 FR1 Hotfix 3  - release scheduled for June 17,

- V3R4 FR1 GA Update - release scheduled for June 18,

- and all following releases.

Unfortunately the previous SSL certificates for Unify Phone become invalid as early as June 29, 2025. Therefore immediate action is required on OpenScape Business customer systems which are configured to use Unify Phone.

Before June 29, one of the following options must be applied:

1) Update the customer systems to V3R4 FR1 Hotfix 3, or

2) Update the customer systems to V3R4 FR1 GA Update, or

3) Import the new certificates manually via Admin Portal.

For this purpose, the relevant new certificates will be provided for download from the SWS server as an attachment to the aforementioned releases. They are also attached to this newsletter.

The import of Root.cer and phoneapp_unify_com_cert.cer can be performed via OpenScape Business Admin Portal: 

Expert Mode - Telephony Server - Security - Signaling and Payload Encryption (SPE) - SPE CA Certificate(s)

Select the *.cer files one by one, click "View Fingerprint of Certificate" - click "OK" - then you can click "Import Certificate from File".

Without one of these actions, Unify Phone clients will not be able to interwork with OpenScape Business anymore after the June 29, 2025.