Cisco Systems 7970G manual

Chapter 1 An Overview of the Cisco Unified IP Phone

Understanding Security Features for Cisco Unified IP Phones

Table 1-3			Overview of Security Features (continued)

Feature				Description

Signaling Encryption				Ensures that all SIP signaling messages that are sent between the
				device and the Cisco Unified CallManager server are encrypted.

CAPF (Certificate Authority				Implements parts of the certificate generation procedure that are too
Proxy Function)				processing-intensive for the phone, and it interacts with the phone
				for key generation and certificate installation. The CAPF can be
				configured to request certificates from customer-specified
				certificate authorities on behalf of the phone, or it can be configured
				to generate certificates locally.

Security Profiles				Defines whether the phone is nonsecure, authenticated, or
				encrypted.

Encrypted Configuration files				Enables privacy of phone configuration files.

Optional disabling of the web				You can prevent access to a phone’s web page, which displays a
server functionality for a phone				variety of operational statistics for the phone.

Phone hardening				• Additional security options, which you control from Cisco
				Unified CallManager Administration:
				–	Disabling PC port
				–	Disabling Gratuitous ARP
				– Disabling PC Voice VLAN access
				– Disabling access to the Setting menus, or providing
					restricted access that allows access to the User Preferences
					menu and saving volume changes only
				Disabling access to web pages for a phone.
				Note You can view current settings for the PC Port Disabled,
					GARP Enabled, and Voice VLAN enabled options by
					looking at the phone’s Security Configuration menu. For
					more information, see the “Device Configuration Menu”
					section on page 4-15.

802.1X Authentication				The Cisco Unified IP Phone can use 802.1X authentication to
				request and gain access to the network. See the “Supporting 802.1X
				Authentication on Cisco Unified IP Phones” section on page 1-18
				for more information.

		Cisco Unified IP Phone Administration Guide for Cisco Unified CallManager 5.1 (SIP), Cisco Unified IP Phones

1-16					OL-11524-01

Image 50

Cisco Systems 7970G manual More information, see the Device Configuration Menu

Contents

Cisco Unified IP Phones 7970G/7971G-GE Page Page Page N T E N T S Products Adding Phones with Cisco Unified CallManager Administration Vii Disabling a Headset Viii Customizing and Modifying Configuration Files Configuring a Custom Background Image Troubleshooting and Maintenance Monitoring the Voice Quality of Calls Xii Xiii Xiv Overview Audience Organization Xvi Cisco Unified IP Phones 7970G/7971G-GE Cisco Unified CallManager AdministrationRelated Documentation Xvii Cisco.com TroubleshootingObtaining Documentation Product Documentation DVD Ordering Documentation Documentation FeedbackCisco Product Security Overview Xix Reporting Security Problems in Cisco Products For emergencies only security-alert@cisco.com Xxi Product Alerts and Field NoticesObtaining Technical Assistance Cisco Technical Support & Documentation Website Xxii Xxiii Submitting a Service RequestDefinitions of Service Request Severity Obtaining Additional Publications and Information Xxiv Boldface font Document ConventionsConvention Description Italic font Italic screen font Xxvi Xxvii Waarschuwing Belangrijke VeiligheidsinstructiesVaroitus Tärkeitä Turvallisuusohjeita Xxviii Warnung Wichtige SicherheitshinweiseAvvertenza Importanti Istruzioni Sulla Sicurezza Aviso Instruções Importantes DE Segurança Xxix Varning! Viktiga Säkerhetsanvisningar Xxx Xxxi GEM Disse Anvisninger Xxxii Xxxiii Xxxiv An Overview of the Cisco Unified IP Phone Understanding the Cisco Unified IP Phones 7970G/7971G-GE Cisco Unified IP PhonePage OL-11524-01 Unified CallManager System Guide What Networking Protocols Are Used?Networking Protocol Purpose Usage Notes Phones section on page 1-18 for Authentication on Cisco Unified IPRefer to the Supporting Network Configuration section on Understanding the SIP Protocol Related Topics Feature Overview Configuring Telephony Features Providing Users with Feature Information Refer to Cisco Unified CallManager Security Understanding Security Features for Cisco Unified IP PhonesTopic Reference Guide Topic Reference Overview of Supported Security Features Feature Description More information, see the Device Configuration Menu Authentication on Cisco Unified IP Phones section on Select Security Configuration Identifying Encrypted and Authenticated Phone CallsProcedure Understanding Security Profiles Supporting 802.1X Authentication on Cisco Unified IP Phones Related Topic Required Network Components OL-11524-01 Security Restrictions OL-11524-01 CallManager System Guide CallManager AdministrationTask Purpose For More Information Refer to Cisco Unified Templates section on See the Configuring SoftkeySee the Setting Up Services Cisco Unified CallManager Installing Cisco Unified IP PhonesSee the Adding Users to Page See the Adjusting See the Providing PowerSee the Installing Placement of the Cisco SettingsNetwork Configuration IP Phone 7970 Guide OL-11524-01 A P T E R OL-11524-01 Telephony Features Available for the Phone, Vlan Providing Power to the Phone Power Type Guidelines Power GuidelinesPhone Power Consumption and Display Brightness Brightness Power Outage Obtaining Additional Information about Power Understanding Phone Configuration Files Understanding the Phone Startup Process SIP Dial Rules Step Description Related Topics Unified CallManager Security Guide Understanding Files, Adding Phones to the Cisco Unified CallManager Database Requires MAC Method Address? Adding Phones with Auto-Registration Adding Phones with Auto-Registration and Taps Adding Phones with BAT MAC Address of a Cisco Unified IP Phone section on Using Cisco Unified IP Phones with Different Protocols Converting an In-Use Phone from Sccp to SIP See the Configuring Startup Network Settings section onConverting a New Phone from Sccp to SIP Converting an In-Use Phone from SIP to Sccp Deploying a Phone in an Sccp and SIP Environment Determining the MAC Address of a Cisco Unified IP Phone Setting Up the Cisco Unified IP Phone Network Requirements Cisco Unified CallManager ConfigurationBefore You Begin Safety Setting Up the Cisco Unified IP Phone Before You Begin Handset Network and Access PortsNetwork and Access Ports, Handset, Speakerphone, Headset, Speakerphone Headset Audio Quality Subjective to the User Http//plantronics.com Using External Devices with Your Cisco Unified IP Phone See the Providing Power to Installing the Cisco Unified IP PhoneProcedure Reference See the Headset section on See the Network and Access Ports section on page 3-5 for 130055 Adjusting the Placement of the Cisco Unified IP Phone Adjusting Cisco Unified IP Phone Placement on the Desktop Securing the Phone with a Cable Lock See -2 below Mounting the Phone to the Wall Before You Begin Verifying the Phone Startup Process Parts Used in Wall Mounting the Cisco Unified IP Phone OL-11524-01 Configuring Startup Network Settings Settings on the Cisco Unified IP Phone Before You Begin From the phone, press the Settings Security Configuration OL-11524-01 Configuring Settings on Cisco Unified IP Phone Related Topics Displaying a Configuration Menu Unlocking and Locking Options Editing Values Overview of Options Configurable from a Phone Category Description Network Configuration Menu Values section on Option Description To Change Security Configuration Menu section Refer to Cisco Unified CallManager Option Description To Change Vlan ID Scroll to the Dhcp Address Option Description To Change PC Vlan Device Configuration Menu Blank CallManager Configuration MenuState Unified CallManager Security Guide Designation DescriptionDevice Pool CallManager Security Guide Device Device Settings SIP Configuration MenuSIP General Configuration Menu, Line Settings Menu, SIP Profile Usecallmanager Line Settings Menu Call Preferences Menu This option can also be Http Configuration Menu URL Locale Configuration Menu Configuration Menu, UI Configuration Menu NTP Configuration Menu Incoming call on the same line when Parameters Media Configuration MenuAdministration System Enterprise Enabled or disabled for the phone. If Whose phone has the Recording Tone Receives. The remote party is the party Power Save Configuration Menu Ethernet Configuration Menu Security Configuration Menu Responses. Disabling the phone’s QoS Configuration Menu Network Configuration WAN by storing images locally Security Configuration Menu Call Statistics Screen, Streaming Statistics, Cisco Unified CallManager Security CTL File Screen section onList Screen section on Status section on See the 802.1X AuthenticationCTL File Screen Configuration Menu section on Unlocking the CTL File Trust List Screen 802.1X Authentication and Status Authentication Device Choose Settings SecurityConfiguration Authentication 802.1X Authentication Real-Time Status Configuring Features, Templates Services, and Users Telephony Features Available for the Phone Feature Description Configuration Reference System Guide, Call Pickup Administration GuideFeatures and Services Guide CallManager Features System Guide Changed Information Guide Administration Guide, CallCisco Unified CallManager New Release 5.11, Cisco Unified Text, on the phone screen DND Features and Services Guide section New and Changed Information System Guide, Music on Administration Guide, MusicServices Guide, Presence CallManager System Guide, Cisco Administration Guide , Cisco Unified CallManager System Creating Custom Phone Rings section on System Guide, Time-of-Day Administration Guide, TimeService Application Development Refer to the Cisco Unified IP Phone Configuring Corporate Directories and Personal Directories Configuring Corporate Directories Configuring Personal Directory Configuring Softkey Templates Modifying Phone Button Templates Setting Up Services Adding Users to Cisco Unified CallManager Managing the User Options Web Pages Giving Users Access to the User Options Web Pages User Management End User Customizing the Cisco Unified IP Phone Creating Custom Phone Rings Ringlist.xml File Format Requirements Configuring a Custom Phone Ring PCM File Requirements for Custom Ring Types Creating Custom Background Images List.xml File Format Requirements PNG File Requirements for Custom Background Images List.xml Example Configuring a Custom Background Image Configuring Wideband Headset Codec Configuring the Idle Display OL-11524-01 Page Field Description Field Description OL-11524-01 A P T E R Model Information Screen CTL Phones with Different Protocols See the Using Cisco Unified IPStatus Menu Status Messages Screen Select Status Messages Message Description Possible Explanation and Action CallManager Administration section onNetwork Configuration Menu section Adding Phones with Cisco Unified Unified CallManager Administration Guide Authentication and Status section on Settings Security Configuration802.1X Authentication option on the phone Address. See the Network Configuration Message Description Possible Explanation and Action Network Configuration Menu section on Device Phone Phone. See the Firmware Versions ScreenSection on page 7-15 to verify the phone See the Network Configuration Menu Section on page 4-7 section for details Message Description Possible Explanation and Action Network Statistics Screen Select Network Statistics PC port is in a link up state and has auto-negotiated Firmware Versions Screen Select Firmware Versions Call Statistics Screen Select Call Statistics MOS LQK Monitoring the Voice Quality of Calls section on OL-11524-01 Monitoring the Cisco Unified IP Phone Remotely Http//IPaddress Accessing the Web Page for a PhoneNetwork Statistics, Device Logs, Streaming Statistics, Disabling and Enabling Web Page Access Device Information Choose Device Phone UDI Network Configuration Network Configuration Description Description Description Network Statistics Ethernet Information Area Items Description Device Logs Streaming Statistics MOS LQK Streaming Statistics Related Topics Page OL-11524-01 Troubleshooting and Maintenance Resolving Startup Problems Troubleshooting and Maintenance Resolving Startup Problems Identifying Error Messages Verifying IP Addressing and Routing Cisco CallManager Serviceability Choose Tools Control Center Creating a New Configuration File Symptom Cisco Unified IP Phone Unable to Obtain IP Address Identifying Intermittent Network Outages Cisco Unified IP Phone Resets UnexpectedlyVerifying Physical Connection Verifying Voice Vlan Configuration Verifying Dhcp SettingsChecking Static IP Address Settings Eliminating DNS or Other Connectivity Errors Verifying that the Phones Have Not Been Intentionally Reset Checking Power Connection Problem Possible Cause 802.1X Enabled on Phone but Not Authenticating 802.1X Not Enabled General Troubleshooting Tips Summary Explanation Unlocking and Locking Options section on page 4-4 for See the Call Statistics Screen section on page 7-16 for Performing a Basic Reset, Performing a Factory Reset, Halfduxcollisionexceedthreshold Locking Options section on Performing a Basic ResetOperation Performing Explanation Unlocking and Locking Options Performing a Factory Reset Using the Quality Report Tool Monitoring the Voice Quality of Calls Using Voice Quality Metrics Troubleshooting Tips Condition Cleaning the Cisco Unified IP Phone Where to Go for More Troubleshooting Information Website Providing Information to Users Via a How Users Access the Online Help System on the Phone How Users Obtain Support for the Cisco Unified IP Phone How Users Get Copies of Cisco Unified IP Phone Manuals How Users Access a Voice Messaging System Unified CallManager section on How Users Configure Personal Directory Click Next Configuring the Synchronizer OL-11524-01 P E N D I X B Features Cisco Unified IP Phone CMC Calling Features Cisco Unified IP Phone 7970G/7971G-GE Cisco Ipma User Guide Cisco IP Phone Service ApplicationDevelopment Notes for Release 4.13 or User Guide Cisco CallManager Features and ServicesCisco CallManager Attendant Console Cisco IP Phone Expansion Module Supporting International Users Adding Language Overlays to Phone Buttons Installing the Cisco Unified CallManager Locale Installer Technical Specifications Specification Value or Range Cable Specifications Network and Access Port Pinouts Pin Number Function Network Port ConnectorAccess Port Connector Numerics IN-1 IN-2 IN-3 IN-4 IN-5 IN-6 IN-7 IN-8 IN-9 IN-10 IN-11 IN-12 Vlan IN-13 IN-14