Chapter 1
Overview of the Cisco Unified Wireless IP Phone 7925G, 7925G-EX, and 7926G
Table 1-4
Feature
Signaling encryption by using
TLS
CAPF (Certificate Authority
Proxy Function)
Security profiles
Encrypted configuration files
Optional disabling of the web
server functionality for a phone
Phone hardening
Related Topics
•
•
•
•
Understanding Security Profiles
A security profile defines whether the phone is non-secure, authenticated, encrypted, or protected. Every
Cisco Unified IP Phone that is supported by Cisco Unified Communications Manager Administration
has a security profile. For information about configuring the security profile and applying the profile to
the phone, see Cisco Unified Communications Manager Security Guide.
For Cisco Unified IP Phones using Cisco Unified CallManager 4.3 and later, security is configured on
Note
each phone. For more information about configuring security, see Cisco Unified CallManager Security
Guide at
Description of Security Features (continued)
Understanding Security Profiles, page 1-13
Identifying Authenticated, Encrypted, and Protected Phone Calls, page 1-14
Viewing Device Information, page 8-4
Security Restrictions, page 1-15
http://www.cisco.com/en/US/products/sw/voicesw/ps556/prod_maintenance_guides_list.html.
Cisco Unified Wireless IP Phone 7925G, 7925G-EX, and 7926G Administration Guide
Understanding Security Features for Cisco Unified IP Phones
Description
Ensures that all SCCP signaling messages that are sent between the
device and the Cisco Unified Communications Manager server are
encrypted.
Implements parts of the certificate generation procedure that are too
processing-intensive for the phone, and it interacts with the phone
for key generation and certificate installation. The CAPF can be
configured to request certificates from customer-specified
certificate authorities on behalf of the phone, or it can be configured
to generate certificates locally.
Defines whether the phone is non-secure, authenticated, or
encrypted. See
"Understanding Security Profiles" section on
page 1-13
for more information.
Lets you ensure the privacy of phone configuration files.
You can prevent access to a phone web page, which displays a
variety of operational statistics for the phone.
Additional security options, which you control from
Cisco Unified Communications Manager Administration:
Disabling Gratuitous ARP (GARP)
•
Disabling access to the Setting menus
•
Disabling access to web pages for a phone
•
Note
You can view current settings for the GARP Enabled, and
Web Access options by looking at the phone's Device
Information menu. For more information, see
Security Information" section on page
"Viewing
8-1.
1-13