Cisco 7931G - Unified IP Phone VoIP Handbuch - Seite 14

Blättern Sie online oder laden Sie pdf Handbuch für IP-Telefon Cisco 7931G - Unified IP Phone VoIP herunter. Cisco 7931G - Unified IP Phone VoIP 30 Seiten. For cisco unified callmanager express 4.0
Auch für Cisco 7931G - Unified IP Phone VoIP: Benutzerhandbuch (20 seiten), Handbuch für die Verwaltung (10 seiten), Handbuch für die Verwaltung (17 seiten), Handbuch für die Verwaltung (20 seiten), Einbauanleitung (4 seiten), Handbuch für die Verwaltung (12 seiten), Kurzreferenz (2 seiten), Schnellreferenzkarte (2 seiten), Benutzerhandbuch (15 seiten)

Seite drucken

Cisco 7931G - Unified IP Phone VoIP Handbuch

Supported Security Features

Topic

802.1X Authentication for the Cisco Unified IP Phone

Supported Security Features

The following table provides an overview of the security features that the Cisco Unified IP Phone 7931G

supports. For more information about these features and about Cisco Unified Communications Manager and

Cisco Unified IP Phone security, see the Cisco Unified Communications Manager Security Guide.

For information about current security settings on a phone, look at the settings on the Security Configuration

menus on the phone. For more information, see

Menu.

Most security features are available only if a Certificate Trust List (CTL) is installed on the phone. For

Note

more information about the CTL, see the Cisco Unified Communications Manager Security Guide,

"Configuring the Cisco CTL Client" chapter.

Table 3: Overview of Security Features

Feature

Image authentication

Customer-site certificate installation

Device authentication

Cisco Unified IP Phone 7931G Administration Guide for Cisco Unified Communications Manager 9.0 (SCCP

and SIP)

Reference

See these sections:

•

802.1X Authentication, on page 20

•

802.1X Authentication and Status

•

Cisco Unified IP Phone Security Problems

Description

Signed binary files (with the extension .sbn) prevent tampering with the firmware image before

it is loaded on a phone. Tampering with the image causes a phone to fail the authentication

process and reject the new image.

Each Cisco Unified IP Phone requires a unique certificate for device authentication. Phones

include a manufacturing installed certificate (MIC), but for additional security, you can specify

in Cisco Unified Communications Manager Administration that a certificate be installed by

using the Certificate Authority Proxy Function (CAPF). Alternatively, you can install an LSC

from the Security Configuration menu on the phone. For more information, see

IP Phone

Security.

Occurs between the Cisco Unified Communications Manager server and the phone when each

entity accepts the certificate of the other entity. Determines whether a secure connection

between the phone and a Cisco Unified Communications Manager should occur, and, if

necessary, creates a secure signaling path between the entities using transport layer security

(TLS) protocol. Cisco Unified Communications Manager will not register phones unless they

can be authenticated by the Cisco Unified Communications Manager.

Security Configuration Menu

Cisco Unified IP Phone 7931G

and

Security Configuration

Cisco Unified