Cisco Systems 7970G

Chapter1 An Overview of the Cisco Unified IP Phone

Understanding Security Features for Cisco Unified IP Phones

1-16

Cisco Unified IP Phone Administration Guide for Cisco Unified CallManager 5.1 (SIP), Cisco Unified IP Phones

OL-11524-01

Signaling Encryption Ensures that all SIP signaling messages that are sent between the

device and the Cisco Unified CallManager server are encrypted.

CAPF (Certificate Authority

Proxy Function)

Implements parts of the certificate generation procedure that are too

processing-intensive for the phone, and it interacts with the phone

for key generation and certificate installation. The CAPF can be

configured to request certificates from customer-specified

certificate authorities on behalf of the phone, or it can be configured

to generate certificates locally.

Security Profiles Defines whether the phone is nonsecure, authenticated, or

encrypted.

Encrypted Configuration files Enables privacy of phone configuration files.

Optional disabling of the web

server functionality for a phone

You can prevent access to a phone’s web page, which displays a

variety of operational statistics for the phone.

Phone hardening •Additional security options, which you control from Cisco

UnifiedCallManager Administration:

–

Disabling PC port

–

Disabling Gratuitous ARP

–

Disabling PC Voice VLAN access

–

Disabling access to the Setting menus, or providing

restricted access that allows access to the User Preferences

menu and saving volume changes only

Disabling access to web pages for a phone.

Note You can view current settings for the PC Port Disabled,

GARP Enabled, and Voice VLAN enabled options by

looking at the phone’s Security Configuration menu. For

more information, see the “Device Configuration Menu”

section on page4-15.

802.1X Authentication The Cisco Unified IP Phone can use 802.1X authentication to

request and gain access to the network. See the “Supporting 802.1X

Authentication on Cisco Unified IP Phones” section on page 1-18

for more information.

Table1-3 Overview of Security Features (continued)

Feature Description