The VMP Server must validate any SSL certificate
using the existing Windows mechanisms before it will allow an HTTPS connection to a remote system.
The VMP Server now enforces the following requirements:
- The certificate subject name must match the domain name used for the connection.
- Self-signed certificates must
be in the VMP Server's Windows key store.
- If you are using your own internal certificate authority to sign the certificate, the internal CA's certificate must be in the
VMP Server's Windows key store.
- If the certificate uses an IP address, the connection configuration must use an IP address. Similarly, if the certificate
uses a DNS name, the connection configuration must use the same DNS name.
This certificate requirement affects certificates defined for use on the Vocera Voice Server.
Note: Vocera Collaboration Suite clients and
VMP Web Console clients are not affected by this
behavior.