Cisco 8832 Administration Manual page 80

Ip conference phone

Hide thumbs Also See for 8832:

User manual (114 pages)

Manual (30 pages)

Quick start manual (16 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

Table of Contents

Supported Security Features

Feature

Customer-site certificate installation

Device authentication

File authentication

Signaling Authentication

Manufacturing installed certificate

Secure SRST reference

Cisco IP Conference Phone 8832 Administration Guide for Cisco Unified Communications Manager

Cisco IP Conference Phone Administration

Description

Each phone requires a unique certificate for device

authentication. Phones include a manufacturing

installed certificate (MIC), but for additional security,

you can specify in Cisco Unified Communications

Manager Administration that a certificate be installed

by using the Certificate Authority Proxy Function

(CAPF). Alternatively, you can install a Locally

Significant Certificate (LSC) from the Security

Configuration menu on the phone.

Occurs between the Cisco Unified Communications

Manager server and the phone when each entity

accepts the certificate of the other entity. Determines

whether a secure connection between the phone and

a Cisco Unified Communications Manager should

occur; and, if necessary, creates a secure signaling

path between the entities by using TLS protocol. Cisco

Unified Communications Manager will not register

phones unless they can be authenticated by the Cisco

Unified Communications Manager.

Validates digitally signed files that the phone

downloads. The phone validates the signature to make

sure that file tampering did not occur after the file

creation. Files that fail authentication are not written

to Flash memory on the phone. The phone rejects such

files without further processing.

Uses the TLS protocol to validate that no tampering

has occurred to signaling packets during transmission.

Each phone contains a unique manufacturing installed

certificate (MIC), which is used for device

authentication. The MIC is a permanent unique proof

of identity for the phone, and allows Cisco Unified

Communications Manager to authenticate the phone.

After you configure a SRST reference for security

and then reset the dependent devices in Cisco Unified

Communications Manager Administration, the TFTP

server adds the SRST certificate to the phone cnf.xml

file and sends the file to the phone. A secure phone

then uses a TLS connection to interact with the

SRST-enabled router.

Table of Contents

Show Quick Links

Quick Links:
Phone Configuration Files
Daisy Chain Mode
Install the Conference Phone in Daisy...

Hide quick links:

Table of Contents

Cisco 8832 Administration Manual page 80

Hide quick links:

Troubleshooting

Related Products for Cisco 8832

Cisco 8832 Administration Manual page 80

Hide quick links:

Troubleshooting

Related Manuals for Cisco 8832

Related Products for Cisco 8832

Table of Contents