Cisco Ip Phone Security; Cisco Ip Phone Security Overview - Cisco 7821 Administration Manual

Cisco IP Phone Security

•
•
•
•

Cisco IP Phone Security Overview

The Security features protect against several threats, including threats to the identity of the phone and to data.
These features establish and maintain authenticated communication streams between the phone and the Cisco
Unified Communications Manager server, and ensure that the phone uses only digitally signed files.
Cisco Unified Communications Manager Release 8.5(1) and later includes Security by Default, which provides
the following security features for Cisco IP Phones without running the CTL client:
• Signing of the phone configuration files
• Phone configuration file encryption
• HTTPS with Tomcat and other Web services
Secure signaling and media features still require you to run the CTL client and use hardware eTokens.
Note
For more information about the security features, see the Cisco Unified Communications Manager Security
Guide.
A Locally Significant Certificate (LSC) installs on phones after you perform the necessary tasks that are
associated with the Certificate Authority Proxy Function (CAPF). You can use Cisco Unified Communications
Manager Administration to configure an LSC, as described in the Cisco Unified Communications Manager
Security Guide.
Alternatively, you can initiate the installation of an LSC from the Security Setup menu on the phone. This
menu also lets you update or remove an LSC.
Cisco IP Phone Security Overview, page 79
View Current Security Features on Phone, page 80
View Security Profiles, page 80
Supported Security Features, page 80
Cisco IP Phone 7821, 7841, and 7861 Administration Guide for Cisco Unified Communications Manager 10.0 (SIP)
8
C H A P T E R
79