Cisco Systems 6921 - page 82

4-10

Cisco Unified IP Phone 6921, 6941, 6945, and 6961 Administration Guide for Cisco Unified Communications Manager 8.5 (SCCP and SIP)

OL-23769-01

Chapter

Security Configuration Menu

Table 4-5 802.1X Authentication Settings

Option Description To Change

Device Authentication Determines whether 802.1X authentication

is enabled:

• Enabled—Phone uses 802.1X

authentication to request network

access.

• Disabled—Default setting in which the

phone uses CDP to acquire VLAN and

network access.

1. Choose Applications > Admin Settings >

Security Config > 802.1X Authentication >

Device Authentication.

2. Press Edit softkey.

3. Set the Device Authentication option to

Enabled or Disabled.

4. Press the Save softkey.

EAP-MD5 Device ID—A derivative of the phone’s

model number and unique MAC address

displayed in this format:

CP-<model>-SEP-<MAC>

1. Choose Applications > Admin Settings >

Security Config > 802.1X Authentication >

EAP/MD5 > Device ID.

2. Press the Edit softkey.

3. Set the Device ID.

4. Press the Save softkey.

Shared Secret—Choose a password to use on

the phone and on the authentication server.

The password must be between 6 and 32

characters, consisting of any combination of

numbers or letters.

Note If you disable 802.1X authentication

or perform a factory reset of the

phone, the shared secret is deleted.

1. Choose Applications > Admin Settings >

Security Config > 802.1X Authentication >

EAP-MD5 > Shared Secret.

2. Press the Edit softkey.

3. Enter the shared secret.

4. Press the Save softkey.

See the “Troubleshooting Cisco Unified IP Phone

Security” section on page 9-8 for assistance in

recovering from a deleted shared secret.

Realm—Indicates the user network domain,

always set as Network. 1. Choose Applications > Admin Settings >

Security Config > 802.1X Authentication >

EAP-MD5 > Realm.

2. Press the Edit softkey.

3. Enter the Network.

4. Press the Save softkey.

Transaction Status Displays the transaction status of your

802.1X Authentication. To view the transaction status of your 802.1X

Authentication, choose Applications > Admin

Settings > Security Configuration > 802.1X

Authentication Status.

Contents

Main Page CONTENTS Page Page Page Page viii GFeature Support by Protocol for the Cisco Unified IP Phone 6921, 6941, 6945, and 6961 G-1 Preface Overview Audience Organization Related Documentation Obtaining Documentation, Obtaining Support, and Security Guidelines Cisco Product Security Overview Document Conventions Page An Overview of the Cisco Unified IP Phone Understanding the Cisco Unified IP Phones 6921, 6941, 6945, and 6961 Page Page Page Page Page Page What Networking Protocols are Used? Page Page What Features are Supported on the Cisco Unified IP Phone 6921, 6941, and 6961? Feature Overview Configuring Telephony Features Configuring Network Parameters Using the Cisco Unified IP Phone Providing Users with Feature Information Understanding Security Features for Cisco Unified IP Phones Page Overview of Supported Security Features Page Understanding Security Profiles Identifying Encrypted Phone Calls Establishing and Identifying Secure Conference Calls Establishing and Identifying Protected Calls Call Security Interactions and Restrictions Supporting 802.1X Authentication on Cisco Unified IP Phones Overview Required Network Components Best PracticesRequirements and Recommendations Security Restrictions Overview of Configuring and Installing Cisco Unified IP Phones Configuring Cisco Unified IP Phones in Cisco Unified CM Checklist for Configuring the Cisco Unified IP Phones 6921, 6941, 6945, and 6961 in Cisco Unified CM Page Page Installing Cisco Unified IP Phones Checklist for Installing the Cisco Unified IP Phone 6921, 6941, and 6961 Page Terminology Differences Page Preparing to Install the Cisco Unified IP Phone on Your Network Understanding Interactions with Other Cisco Unified IP Telephony Products Understanding How the Cisco Unified IP Phone Interacts with Cisco Unified CM Understanding How the Cisco Unified IP Phone Interacts with the VLAN Providing Power to the Cisco Unified IP Phone Power Guidelines Power Outage Obtaining Additional Information about Power Understanding Phone Configuration Files Page Understanding the Phone Startup Process Adding Phones to the Cisco Unified CM Database Adding Phones with Auto-Registration Adding Phones with Auto-Registration and TAPS Adding Phones with Cisco Unified CM Administration Adding Phones with BAT Using Cisco Unified IP Phones with Different Protocols Converting a New Phone from SCCP to SIP Converting an In-Use Phone from One Protocol to the Other Protocol Deploying a Phone in an SCCP and SIP Environment Determining the MAC Address for a Cisco Unified IP Phone Page Setting Up the Cisco Unified IP Phone Before You Begin Network Requirements Cisco Unified Communications Manager Configuration Understanding the Cisco Unified IP Phones 6921, 6941, 6945, and 6961 Components Network and Access Ports Handset Speakerphone Headset Audio Quality Connecting a Headset Disabling a Headset Using External Devices Installing the Cisco Unified IP Phone 3-6 Page Page Reducing Power Consumption on the Phone Footstand Page Page Page Page Lower Viewing Angle Mounting the Phone to the Wall Verifying the Phone Startup Process Configuring Startup Network Settings Configuring Security on the Cisco Unified IP Phone Page Configuring Settings on the Cisco Unified IP Phone Configuration Menus on the Cisco Unified IP Phone Displaying a Configuration Menu Unlocking and Locking Options Editing Values Network Setup Menu Page IPv4 Setup Menu Options Page Page Security Configuration Menu Trust List Menu 802.1X Authentication and Status Page Configuring Features, Templates, Services, and Users Telephony Features Available for the Cisco Unified IP Phone Page Page Page Page Page Page Page Page Page Page Page Page Page Join and Direct Transfer Policy Configuring Corporate and Personal Directories Configuring Corporate Directories Configuring Personal Directory Modifying Phone Button Templates Modifying a Phone Button Template for Personal Address Book or Speed Dials Configuring Softkey Templates Page Setting Up Services Adding Users to Cisco Unified Communications Manager Managing the User Options Web Pages Giving Users Access to the User Options Web Pages Page Specifying Options that Appear on the User Options Web Pages Configuring the Phone to Support Call Waiting Page Customizing the Cisco Unified IP Phone Customizing and Modifying Configuration Files Creating Custom Phone Rings DistinctiveRingList File Format Requirements PCM File Requirements for Custom Ring Types Configuring a Custom Phone Ring Configuring the Idle Display Automatically Disabling the Cisco Unified IP Phone Backlight Page Page Viewing Model Information, Status, and Statistics on the Cisco Unified IP Phone Model Information Screen Status Menu Status Messages Screen Page Page Page Network Statistics Screen Page Call Statistics Screen Page Security Configuration Page Page Monitoring the Cisco Unified IP Phone Remotely Accessing the Web Page for a Phone Disabling and Enabling Web Page Access Device Information Network Setup Page Page Network Statistics Page Device Logs Streaming Statistics Page Page Page Troubleshooting and Maintenance Resolving Startup Problems Symptom: The Cisco Unified IP Phone Does Not Go Through its Normal Startup Process Symptom: The Cisco Unified IP Phone Does Not Register with Cisco Unified Communications Manager Identifying Error Messages Checking Network Connectivity Verifying TFTP Server Settings Verifying IP Addressing and Routing Verifying DNS Settings Cisco CallManager and TFTP Services Are Not Running Creating a New Configuration File Registering the Phone with Cisco Unified Communications Manager Symptom: Cisco Unified IP Phone Unable to Obtain IP Address Cisco Unified IP Phone Resets Unexpectedly Verifying the Physical Connection Identifying Intermittent Network Outages Verifying DHCP Settings Checking Static IP Address Settings Verifying the Voice VLAN Configuration Verifying that the Phones Have Not Been Intentionally Reset Eliminating DNS or Other Connectivity Errors Checking Power Connection Troubleshooting Cisco Unified IP Phone Security General Troubleshooting Tips Page Page Resetting or Restoring the Cisco Unified IP Phone Performing a Basic Reset Performing a Factory Reset Monitoring the Voice Quality of Calls Troubleshooting Tips Using Voice-Quality Metrics Where to Go for More Troubleshooting Information Cleaning the Cisco Unified IP Phone Page A Providing Information to Users Via a Website How Users Obtain Support for the Cisco Unified IP Phone Giving Users Access to the User Options Web Pages How Users Subscribe to Services and Configure Phone Features How Users Access a Voice Messaging System How Users Configure Personal Directory Entries Installing and Configuring the Cisco Unified IP Phone Address Book Synchronizer Page B Supporting International Users Installing the Cisco Unified CM Locale Installer Support for International Call Logging Page C Technical Specifications Physical and Operating Environment Specifications Cable Specifications Network and Access Port Pinouts Page Page D Basic Phone Administration Steps Example User Information for these Procedures Adding a User to Cisco Unified CM Adding a User From an External LDAP Directory Adding a User Directly to Cisco Unified Communications Manager Configuring the Phone Page Page Performing Final End User Configuration Steps E Installing the Wall Mount Kit for the Cisco Unified IP Phones 6921, 6941, 6945, and 6961 Before You Begin Installing the Bracket E-3 AB C D Page 21 3 4 Page Page Page F Cisco Unified IP Phone Non-Lockable Wall Mount ADA Non-Lockable Wall Mount Kit for 6900 Series Components Before You Begin Install Non-Lockable Wall Mount Kit for Phone Page Page Remove Phone from Non-Lockable Wall Mount Page Page G Feature Support by Protocol for the Cisco Unified IP Phone 6921, 6941, 6945, and 6961 Page Page Page INDEX Numerics A B C D E F G H I J K L M O P Q R S T U V W X