Related Topic | Cisco Systems 7970G specification

Chapter 1 An Overview of the Cisco Unified IP Phone

Understanding Security Features for Cisco Unified IP Phones

In an encrypted call, all devices participating in the establishment of the call are authenticated by the Cisco Unified CallManager. In addition, call signaling and media streams are encrypted. An encrypted call offers the highest level of security, providing integrity and privacy to the call. When a call in progress is being encrypted, the call progress icon to the right of the call duration timer in the phone LCD screen changes to the following icon:

Note If the call is routed through non-IP call legs, for example, H.323 or PSTN, the call will be nonsecure even though it is encrypted within the IP network and has a lock icon associated with it.

Related Topic

•Understanding Security Features for Cisco Unified IP Phones, page 1-12

•Security Restrictions, page 1-21

Supporting 802.1X Authentication on Cisco Unified IP Phones

These sections provide information about 802.1X support on the Cisco Unified IP Phones:

•Overview, page 1-18

•Required Network Components, page 1-19

•Best Practices—Requirements and Recommendations, page 1-19

Overview

Cisco Unified IP phones and Cisco Catalyst switches have traditionally used Cisco Discovery Protocol (CDP) to identify each other and determine parameters such as VLAN allocation and inline power requirements. However, CDP is not used to identify any locally attached PCs, therefore Cisco Unified IP Phones provide an EAPOL pass-through mechanism, whereby a PC locally attached to the IP phone, may pass through EAPOL messages to the 802.1X authenticator in

		Cisco Unified IP Phone Administration Guide for Cisco Unified CallManager 5.1 (SIP), Cisco Unified IP Phones

1-18		OL-11524-01
1-18		OL-11524-01

Image 52

Cisco Systems 7970G manual Supporting 802.1X Authentication on Cisco Unified IP Phones, Related Topic

Contents

Cisco Unified IP Phones 7970G/7971G-GE Page Page Page N T E N T S Products Adding Phones with Cisco Unified CallManager Administration Vii Disabling a Headset Viii Customizing and Modifying Configuration Files Configuring a Custom Background Image Troubleshooting and Maintenance Monitoring the Voice Quality of Calls Xii Xiii Xiv Overview Audience Organization Xvi Cisco Unified CallManager Administration Related DocumentationCisco Unified IP Phones 7970G/7971G-GE Xvii Troubleshooting Obtaining DocumentationCisco.com Product Documentation DVD Documentation Feedback Cisco Product Security OverviewOrdering Documentation Xix Reporting Security Problems in Cisco Products For emergencies only security-alert@cisco.com Obtaining Technical Assistance Product Alerts and Field NoticesXxi Cisco Technical Support & Documentation Website Xxii Definitions of Service Request Severity Submitting a Service RequestXxiii Obtaining Additional Publications and Information Xxiv Document Conventions Convention DescriptionBoldface font Italic font Italic screen font Xxvi Varoitus Tärkeitä Turvallisuusohjeita Waarschuwing Belangrijke VeiligheidsinstructiesXxvii Avvertenza Importanti Istruzioni Sulla Sicurezza Warnung Wichtige SicherheitshinweiseXxviii Aviso Instruções Importantes DE Segurança Xxix Varning! Viktiga Säkerhetsanvisningar Xxx Xxxi GEM Disse Anvisninger Xxxii Xxxiii Xxxiv An Overview of the Cisco Unified IP Phone Understanding the Cisco Unified IP Phones 7970G/7971G-GE Cisco Unified IP PhonePage OL-11524-01 Networking Protocol Purpose Usage Notes What Networking Protocols Are Used?Unified CallManager System Guide Refer to the Supporting Authentication on Cisco Unified IPPhones section on page 1-18 for Network Configuration section on Understanding the SIP Protocol Related Topics Feature Overview Configuring Telephony Features Providing Users with Feature Information Understanding Security Features for Cisco Unified IP Phones Topic ReferenceRefer to Cisco Unified CallManager Security Guide Topic Reference Overview of Supported Security Features Feature Description More information, see the Device Configuration Menu Authentication on Cisco Unified IP Phones section on Identifying Encrypted and Authenticated Phone Calls ProcedureSelect Security Configuration Understanding Security Profiles Supporting 802.1X Authentication on Cisco Unified IP Phones Related Topic Required Network Components OL-11524-01 Security Restrictions OL-11524-01 Task Purpose For More Information CallManager AdministrationCallManager System Guide Refer to Cisco Unified See the Setting Up Services See the Configuring SoftkeyTemplates section on See the Adding Users to Installing Cisco Unified IP PhonesCisco Unified CallManager Page See the Providing Power See the InstallingSee the Adjusting Placement of the Cisco SettingsNetwork Configuration IP Phone 7970 Guide OL-11524-01 A P T E R OL-11524-01 Telephony Features Available for the Phone, Vlan Providing Power to the Phone Phone Power Consumption and Display Brightness Power GuidelinesPower Type Guidelines Brightness Power Outage Obtaining Additional Information about Power Understanding Phone Configuration Files Understanding the Phone Startup Process SIP Dial Rules Step Description Related Topics Unified CallManager Security Guide Understanding Files, Adding Phones to the Cisco Unified CallManager Database Requires MAC Method Address? Adding Phones with Auto-Registration Adding Phones with Auto-Registration and Taps Adding Phones with BAT MAC Address of a Cisco Unified IP Phone section on Using Cisco Unified IP Phones with Different Protocols Converting a New Phone from Sccp to SIP See the Configuring Startup Network Settings section onConverting an In-Use Phone from Sccp to SIP Converting an In-Use Phone from SIP to Sccp Deploying a Phone in an Sccp and SIP Environment Determining the MAC Address of a Cisco Unified IP Phone Setting Up the Cisco Unified IP Phone Before You Begin Cisco Unified CallManager ConfigurationNetwork Requirements Safety Setting Up the Cisco Unified IP Phone Before You Begin Network and Access Ports, Handset, Speakerphone, Headset, Network and Access PortsHandset Speakerphone Headset Audio Quality Subjective to the User Http//plantronics.com Using External Devices with Your Cisco Unified IP Phone Installing the Cisco Unified IP Phone Procedure ReferenceSee the Providing Power to See the Headset section on See the Network and Access Ports section on page 3-5 for 130055 Adjusting the Placement of the Cisco Unified IP Phone Adjusting Cisco Unified IP Phone Placement on the Desktop Securing the Phone with a Cable Lock See -2 below Mounting the Phone to the Wall Before You Begin Verifying the Phone Startup Process Parts Used in Wall Mounting the Cisco Unified IP Phone OL-11524-01 Configuring Startup Network Settings Settings on the Cisco Unified IP Phone Before You Begin From the phone, press the Settings Security Configuration OL-11524-01 Configuring Settings on Cisco Unified IP Phone Related Topics Displaying a Configuration Menu Unlocking and Locking Options Editing Values Overview of Options Configurable from a Phone Category Description Network Configuration Menu Values section on Option Description To Change Security Configuration Menu section Refer to Cisco Unified CallManager Option Description To Change Vlan ID Scroll to the Dhcp Address Option Description To Change PC Vlan Device Configuration Menu State CallManager Configuration MenuBlank Designation Description Device PoolUnified CallManager Security Guide CallManager Security Guide SIP Configuration Menu SIP General Configuration Menu, Line Settings Menu,Device Device Settings SIP Profile Usecallmanager Line Settings Menu Call Preferences Menu This option can also be Http Configuration Menu URL Locale Configuration Menu Configuration Menu, UI Configuration Menu NTP Configuration Menu Incoming call on the same line when Administration System Enterprise Media Configuration MenuParameters Enabled or disabled for the phone. If Whose phone has the Recording Tone Receives. The remote party is the party Power Save Configuration Menu Ethernet Configuration Menu Security Configuration Menu Responses. Disabling the phone’s QoS Configuration Menu Network Configuration WAN by storing images locally Security Configuration Menu Call Statistics Screen, Streaming Statistics, List Screen section on CTL File Screen section onCisco Unified CallManager Security CTL File Screen See the 802.1X AuthenticationStatus section on Configuration Menu section on Unlocking the CTL File Trust List Screen 802.1X Authentication and Status Choose Settings Security ConfigurationAuthentication Device Authentication 802.1X Authentication Real-Time Status Configuring Features, Templates Services, and Users Telephony Features Available for the Phone Feature Description Configuration Reference Features and Services Guide Administration GuideSystem Guide, Call Pickup CallManager Features System Guide Administration Guide, Call Cisco Unified CallManager NewChanged Information Guide Release 5.11, Cisco Unified Text, on the phone screen DND Features and Services Guide section New and Changed Information Administration Guide, Music Services Guide, PresenceSystem Guide, Music on CallManager System Guide, Cisco Administration Guide , Cisco Unified CallManager System Creating Custom Phone Rings section on Administration Guide, Time Service Application DevelopmentSystem Guide, Time-of-Day Refer to the Cisco Unified IP Phone Configuring Corporate Directories and Personal Directories Configuring Corporate Directories Configuring Personal Directory Configuring Softkey Templates Modifying Phone Button Templates Setting Up Services Adding Users to Cisco Unified CallManager Managing the User Options Web Pages Giving Users Access to the User Options Web Pages User Management End User Customizing the Cisco Unified IP Phone Creating Custom Phone Rings Ringlist.xml File Format Requirements Configuring a Custom Phone Ring PCM File Requirements for Custom Ring Types Creating Custom Background Images List.xml File Format Requirements PNG File Requirements for Custom Background Images List.xml Example Configuring a Custom Background Image Configuring Wideband Headset Codec Configuring the Idle Display OL-11524-01 Page Field Description Field Description OL-11524-01 A P T E R Model Information Screen CTL Status Menu See the Using Cisco Unified IPPhones with Different Protocols Status Messages Screen Select Status Messages CallManager Administration section on Network Configuration Menu sectionMessage Description Possible Explanation and Action Adding Phones with Cisco Unified Unified CallManager Administration Guide Settings Security Configuration 802.1X Authentication option on the phoneAuthentication and Status section on Address. See the Network Configuration Message Description Possible Explanation and Action Network Configuration Menu section on Section on page 7-15 to verify the phone Phone. See the Firmware Versions ScreenDevice Phone See the Network Configuration Menu Section on page 4-7 section for details Message Description Possible Explanation and Action Network Statistics Screen Select Network Statistics PC port is in a link up state and has auto-negotiated Firmware Versions Screen Select Firmware Versions Call Statistics Screen Select Call Statistics MOS LQK Monitoring the Voice Quality of Calls section on OL-11524-01 Monitoring the Cisco Unified IP Phone Remotely Network Statistics, Device Logs, Streaming Statistics, Accessing the Web Page for a PhoneHttp//IPaddress Disabling and Enabling Web Page Access Device Information Choose Device Phone UDI Network Configuration Network Configuration Description Description Description Network Statistics Ethernet Information Area Items Description Device Logs Streaming Statistics MOS LQK Streaming Statistics Related Topics Page OL-11524-01 Troubleshooting and Maintenance Resolving Startup Problems Troubleshooting and Maintenance Resolving Startup Problems Identifying Error Messages Verifying IP Addressing and Routing Cisco CallManager Serviceability Choose Tools Control Center Creating a New Configuration File Symptom Cisco Unified IP Phone Unable to Obtain IP Address Verifying Physical Connection Cisco Unified IP Phone Resets UnexpectedlyIdentifying Intermittent Network Outages Checking Static IP Address Settings Verifying Dhcp SettingsVerifying Voice Vlan Configuration Eliminating DNS or Other Connectivity Errors Verifying that the Phones Have Not Been Intentionally Reset Checking Power Connection Problem Possible Cause 802.1X Enabled on Phone but Not Authenticating 802.1X Not Enabled General Troubleshooting Tips Summary Explanation Unlocking and Locking Options section on page 4-4 for See the Call Statistics Screen section on page 7-16 for Performing a Basic Reset, Performing a Factory Reset, Halfduxcollisionexceedthreshold Performing a Basic Reset Operation Performing ExplanationLocking Options section on Unlocking and Locking Options Performing a Factory Reset Using the Quality Report Tool Monitoring the Voice Quality of Calls Using Voice Quality Metrics Troubleshooting Tips Condition Cleaning the Cisco Unified IP Phone Where to Go for More Troubleshooting Information Website Providing Information to Users Via a How Users Access the Online Help System on the Phone How Users Obtain Support for the Cisco Unified IP Phone How Users Get Copies of Cisco Unified IP Phone Manuals How Users Access a Voice Messaging System Unified CallManager section on How Users Configure Personal Directory Click Next Configuring the Synchronizer OL-11524-01 P E N D I X B Features Cisco Unified IP Phone CMC Calling Features Cisco Unified IP Phone 7970G/7971G-GE Development Notes for Release 4.13 or Cisco IP Phone Service ApplicationCisco Ipma User Guide Cisco CallManager Features and Services Cisco CallManager Attendant ConsoleUser Guide Cisco IP Phone Expansion Module Supporting International Users Adding Language Overlays to Phone Buttons Installing the Cisco Unified CallManager Locale Installer Technical Specifications Specification Value or Range Cable Specifications Network and Access Port Pinouts Access Port Connector Network Port ConnectorPin Number Function Numerics IN-1 IN-2 IN-3 IN-4 IN-5 IN-6 IN-7 IN-8 IN-9 IN-10 IN-11 IN-12 Vlan IN-13 IN-14