3-17
Cisco Unified IP Phone 7906G and 7911G Administration Guide for Cisco Unified CallManager
OL-10008-01
Chapter3 Setting Up the Cisco Unified IP Phone
Configuring Security on the CiscoUnified IP Phone
•Domain name
•DNS server IP address
•TFTP server IP address
Collect this information and see the instructions in Chapter 4, “Configuring
Settings on the CiscoUnified IP Phone.”
Configuring Security on the Cisco Unified IP PhoneThe security features protect against several threats, including threats to the
identity of the phone and to data. These features establish and maintain
authenticated communication streams between the phone and the
Cisco Unified CallManager server, and digitally sign files before they are
delivered.
For more information about the security features, see the “Understanding Security
Features for Cisco Unified IP Phones” section on page 1-10. Also, refer to
Cisco Unified CallManager Security Guide.
A Locally Significant Certificate (LSC) installs on phones after you perform the
necessary tasks that are associated with the CAPF. You can use
Cisco Unified CallManager Administration to configure an LSC, as described in
Cisco Unified CallManager Security Guide.
Alternatively, you can install an LSC from the Security Configuration menu on
the phone. This menu also lets you update or remove an LSC.
Before You Begin
Make sure that the appropriate CiscoUnified CallManager and the Certificate
Authority Proxy Function (CAPF) security configurations are complete:
•The CTL file should have a CAPF certificate.
•The CAPF certificate must exist in the C:\Program Files\Cisco\Certificates
folder in every server in the cluster.
•The CAPF is running and configured.
•The phone should have the correct load file. To verify the image, press the
Applications Menu button and choose Settings > Model Information.
See the Cisco Unified CallManager Security Guide for more information.