After you configure the Blueworx Voice Response server certificate and add the certificates that you want to trust into the keyring.db database, you must ensure other SIP entities trust Blueworx Voice Response. This task involves configuring the trusted certificates of the other software, and adding in certificates from Blueworx Voice Response.
If you have a self-signed certificate as Blueworx Voice Response’s personal certificate you must extract the certificate from keyring.db as explained in Option 1 - Creating a self-signed certificate. If you are using a certificate that is signed by a Certificate Authority (CA), you must trust all of the CA certificates in the chain that signed the certificate on Blueworx Voice Response. You can also extract these certificates from keyring.db after they are added.
To either extract a CA certificate or the public part of a personal certificate from keyring.db, run the following command:
wvrcert -cert -extract -db $SYS_DIR/voip/keyring.db -stashed -label label
-target filename -format format
where: