Certificate Source
In this example, the certificate and private key will be imported by selecting the option Upload the certificate for this node.
For using a certification issuance provider, e.g., Let's Encrypt, ZeroSSL, or GoDaddy, the option Order a certificate from a certification issuance service can be selected. Take note that this configuration procedure is not shown and not described here.
As mentioned in Google's SIP Link requirements in the 'TLS certificate requirements' section, SIP Link accepts TLS certificates from the following Certificate Authorities (CAs): DigiCert, Entrust DataCard, GlobalSign, GoDaddy, and Sectigo.
TLS certificates must contain the fully qualified domain name (FQDN) of the SBC as the common name (CN), be 2,048 bits in size, and use RSA or ECDSA encryption. The domain of the CN in the certificate must match the Workspace domain.
Important: Wildcard certificates are not supported.