In  you can see an example configuration for creating a SECURE SIP Trunk. The mandatory values are:

We do also suggest the following values to be set:

Other fields in the form depend by your network topology and by the features on the other end PBX.

When you are done with your changes, commit them by clicking on the Create icon.

4.1.1 Certificate Management 

In order to validate a TLS peer for establishing an Encrypted SIP Trunk, you generally have to import the other party CA Root. This is important because the peer TLS certificate could not match actual Certificate Chain and thus the validation would fail.

comes with a bundle of the most known CA Roots certificates ready to be used. So this section is useful for minor certificate authorities and/or for self signed certificates.

Please read 2.3.3 Add certification authority to understand how to import a new CA Root certificate.