11.3.1 Local Node Configuration

Perform the following procedure to enable DESS (Diameter End-to-End Security) in the local node:

Note:

By default DESS feature will be disabled.

1. Log in to the active SOAM (Service Operations, Administration, and Maintenance) GUI.
2. From the Main Menu, navigate to Diameter, Configuration, Local Node, and then click Insert.
3. Enable DESS Feature check box.
4. Upload CA CERT.
5. Upload Private Key.
6. Upload Public Certificate.

   Note:

   Certificates must be in .pem format.
7. Select DESS algorithm from the dropdown menu:
   1. RSA_SHA_256
   2. EC_DSA_SHA_256
   3. DSA_SHA_256
8. Click Apply.

   Note:

   When applying, GUI will verify the certificates and throws error if public certificate is not issued by CA certificate or public and private certificate are not in pair.
   .

   Figure 11-4 Local Node GUI Configuration