Encrypting Configuration Files | Polycom SIP 3.0.2 guide

Miscellaneous Administrative Tasks

•Thawte Server CA

•Thawte Universal CA Root

•UPS Document Exchange by DST

•ValiCert Class 1 VA

•ValiCert Class 2 VA

•ValiCert Class 3 VA

•VeriSign Class 4 Primary CA

•Verisign Class 1 Public Primary Certification Authority

•Verisign Class 1 Public Primary Certification Authority - G2

•Verisign Class 1 Public Primary Certification Authority - G3

•Verisign Class 2 Public Primary Certification Authority

•Verisign Class 2 Public Primary Certification Authority - G2

•Verisign Class 2 Public Primary Certification Authority - G3

•Verisign Class 3 Public Primary Certification Authority

•Verisign Class 3 Public Primary Certification Authority - G2

•Verisign Class 3 Public Primary Certification Authority - G3

•Verisign Class 4 Public Primary Certification Authority - G2

•Verisign Class 4 Public Primary Certification Authority - G3

•Verisign/RSA Commercial CA

•Verisign/RSA Secure Server CA

Encrypting Configuration Files

The phone can recognize encrypted files, which it downloads from the boot server and it can encrypt files before uploading them to the boot server. There must be an encryption key on the phone to perform these operations. Configuration files (excluding the master configuration file), contact directories, and configuration override files can be encrypted.

A separate SDK, with a readme file, is provided to facilitate key generation and configuration file encryption and decrypt on a UNIX or Linux server. The utility is distributed as source code that runs under the UNIX operating system. For more information, contact Polycom Technical Support.

C - 3

Image 239

Polycom SIP 3.0.2 manual Encrypting Configuration Files

Contents

SIP Copyright Notice Disclaimer About This Guide Administrator’s Guide SoundPoint IP / SoundStation IP Contents Administrator’s Guide SoundPoint IP / SoundStation IP Troubleshooting Your SoundPoint IP / SoundStation IP Phones Viii Contents Administrator’s Guide SoundPoint IP / SoundStation IP SoundStation IP Conference Phone SoundPoint IP Desktop PhonesIP 320/330 IP 550/560 IP 600/601 SoundPoint IP Desktop Phones SoundPoint IP SoundPoint IP 550/560 SoundPoint IP 600/601 SoundStation IP Conference Phone Currently supported conference phone is SoundStation IP Key Features of Your SoundPoint IP / SoundStation IP Phones SoundPoint IP 600 Overview SoundPoint IP / SoundStation IP Phones on Where SoundPoint IP / SoundStation IP Phones Fit Session Initiation Protocol Application Architecture BootROM Application Master Configuration Files Application Configuration Files Configuration Application Configuration Files Resource Files Ring tones Synthesized tones Contact directories Available Features Overview Microsoft Live Communications Server Overview Administrator’s Guide SoundPoint IP / SoundStation IP Configured in your network Setting up Your System Dhcp or Manual TCP/IP Setup Setting Up the Network For more information on Dhcp options, go to FTP Tftp Http Https Supported Provisioning Protocols Main Menu Dhcp Menu Server Menu Ethernet Menu Syslog Menu Modifying the Network ConfigurationCertificate Authority List on page C-1 Phone IP Address EM PowerName Possible Values Description Dhcp Client Dhcp Menu Possible Name Values Description Menu Menu Or later. Passive FTP is still supported Name Possible Values Description This will be ignored Password these characters if they are correctly escapedUsing the method specified in RFC Password, this will be ignored CDP Ethernet menu TLS=3 Setting Up the Boot Server MAC-address.cfg Information, contact your Certified Polycom ResellerCreate account and home directory Each phone may open multiple connections to the server Distribution zip file contains These permissions, but will not be able to upload filesRead-only Maintain the same folder hierarchy To deploy phones from the boot server Deploying Phones From the Boot Server PhoneMACaddress.cfg Configuration on page A-4SIP/ on page A-10 You can now instruct your users to start making calls Configuration files used by the boot server are loggedUpgrading SIP Application Permitted Supporting SoundPoint IP and SoundStation IP Phones APPFILEPATH=sip.ld Supporting SoundPoint IP 300 and 500 Phones Phone1212.cfg, sip212.cfg Earlier releases from the boot server This chapter also provides instructions on Setting Up Basic FeaturesConfiguring SoundPoint IP / SoundStation IP Phones Locally Administrator’s Guide SoundPoint IP / SoundStation IP Call Waiting Call TimerCall Log Missed Call Notification Called Party IdentificationCalling Party Identification Customizable Audio Sound Effects Context Sensitive Volume ControlCentral boot server Connected Party Identification Distinctive Incoming Call Treatment Message Waiting Indication Xml Local Distinctive RingingDistinctive Call Waiting Address-directory Do Not Disturb Local Contact Directory Handset, Headset, and Speakerphone Xml DirectOry.xml Element Permitted Values Interpretation LnDoe/ln FnJohn/fn Ct1001/ct Sd1/sd Rt1/rt Ad0/adLnSmith/ln FnBill/fn Ct1003/ct Sd3/sd Rt3/rt Ad0/ad Directory Auto-reject Local Digit Map Speed Dial Microphone MuteSoft Key Activated User Interface Time and Date Display Boot server Ethernet Idle Display Animation Ethernet Switch Which background appear on their phone Graphic Display Backgrounds Bg.gf.gray.3.name=polycom.bmp Automatic Off-Hook Call PlacementCall Hold Call Transfer Manage Conferences Local / Centralized Conferencing Call Forward Group Call Pick-Up Directed Call Pick-Up Last Call Return Setting Up Advanced FeaturesCall Park/Retrieve Configurable Feature Keys Multiple Line Keys per Registration Feature Key Layouts on page C-10 Shared Call Appearances Multiple Call Appearances Bridged Line Appearance Busy Lamp Field Refer to Bridged Line Appearance Signaling on page B-10 Attendant.uri Customizable Fonts and IndicatorsCentral boot Instant Messaging Multilingual User Interface Microbrowser Downloadable FontsSynthesized Call Progress Tones Real-Time Transport Protocol Ports Corporate Directory Network Address Translation Persistency This section contains the following information Corporate Directory Ldap Attributes Recording and Playback of Audio Calls Voice Mail Integration IP 4000 supports a single registration Multiple Registrations Automatic Call Distribution Depends on support from a SIP server Server Redundancy For Outgoing Calls Invite Fallback Reg.1.server.1.address=voipserver.serviceprovider.com Phone Configuration Phone Operation for Registration Masking, the automatic behavior Boot server Address-directoryPresence Microsoft Live Communications Server 2005 Integration Configuration File Examples Refer to Roaming Privacy roamingprivacy/ on page A-104 Refer to Roaming Buddies roamingbuddies/ on page A-104 Set the reg.x.server.y.address to the LCS server name Save the modified phone1.cfg configuration fileSet reg.x.auth.password to the LCS password Low-Delay Audio Packet Transmission Setting Up Audio Features Voice Activity Detection Jitter Buffer and Packet Error Concealment Dtmf Event RTP Payload Acoustic Echo CancellationDtmf Tone Generation Effective Audio CodecsFollowing table summarizes the phone’s audio codec support Automatic Gain Control IP Type-of-ServiceBackground Noise Suppression Comfort Noise Fill 600, 601, and 650 and the SoundStation IP Ieee 802.1p/QVoice Quality Monitoring Local User and Administrator Privilege Levels Setting Up Security Features Custom Certificates Incoming Signaling ValidationConfiguration changes can performed locally Device.cfg Configuring SoundPoint IP / SoundStation IP Phones LocallyConfiguration File Encryption Passwords Troubleshooting Your SoundPoint IP / SoundStation IP Phones BootROM Error Messages Error Messages Application Error Messages Log Files Status Menu Application Logging Options Scheduled Logging Following figure shows a portion of a boot log file Reading a Boot Log Following figure shows a portion of an application log file Reading an Application Log Symptom Problem Corrective Action Power and Startup Controls Access to Screens and Systems Calling Phone on page C-9 Displays Upgrading Audio Configuration Files Master Configuration Files Configuration Files CONFIGFILES=phone1MACADDRESS.cfg, sip.cfg MISCFILES= Application Configuration Configuration Files This attribute includes This configuration attribute is defined as followsProtocol volpProt Resource res Microbrowser mb If voIpProt.server.x.address is an IP If voIpProt.server.x.address is aVoIpProt.server.x.transport is set to If voIpProt.server.x.transport is set to VoIpProt.server.x.address is an IP VoIpProt.SIP.lcs To 1 default is Parameter if set to 1 when the parameter Permitted Attribute Values Default Interpretation Reg.x.auth.optimizedInFailover takes This attribute also includes Outbound Proxy outboundProxy May have a negative performance impact Due to the additional signaling requiredAlert Information alertInfo Request Validation requestValidation Special Events specialEvent Conference Setup conferenceAttribute Permitted Default Interpretation Values Considered a dial from directory Dial Plan dialplanDialplan.applyToCallListDial Digit Map digitmap Routing routing This attributes also includes Server server Emergency emergency Attribute Permitted Values Default Interpretation Multilingual ml Date and Time datetime Localization lclServer server Emergency emergency Lcl.ml.lang.menu.3 Attribute Permitted Values InterpretationLcl.ml.lang.menu.1 Lcl.ml.lang.menu.2 Lcl.datetime.date.dateTop Lcl.datetime.date.longFormat +FF00 U+FFFF Permitted Attribute Values Interpretation User Preferences up OnIntensity value Tones tonesDual Tone Multi-Frequency Dtmf Chord-Sets chord OnIntensity, it will be replaced with Disabled Only be enabled when tone.dtmf.viaRtp is Be enabled when tone.dtmf.viaRtp is Ringer, or misc Sampled Audio for Sound Effects saf Tftp//host/pathnamefilename, for example Sound Effects seFollowing table, x is the sampled audio file number Wave file format Instruction Meaning Example Patterns pat Ring type rt Call progress Use within phone Pattern number Miscellaneous PatternsCall Progress Patterns Call progress Pattern number Use within phone Ringer pattern number Default descriptionRinger Patterns Miscellaneous Pattern number Use within phone Miscellaneous Patterns Patterns on page A-31 Sequential Voice Settings voice Codec Preferences codecPref Following voice codecs are supportedThese codecs include Codec Preferences codecPref Codec Profiles audioProfile Codec Profiles audioProfile Attribute Default Attribute Default Attribute Default Acoustic Echo Cancellation aec Acoustic Echo Suppression aes Background Noise Suppression ns Feature Attribute Default Transmit Equalization txEq Voice Activity Detection vad Central Report Collector collector If voice.vadEnable is set to 0, add attribute line Periodic reports are sent throughout Alert Reports alertWhen Nable.periodic is set 1, since RTCP-XR rtcpxr Call Control callControl Quality of Service QOSEthernet Ieee 802.1p/Q ethernet IP TOS IP RTP RTP Call Control callControl Other other RTP rtp RTP rtp Call Control callControl Qos.ip.callControl… Basic TCP/IP Tcpip Attribute Permitted Default Values Permitted Attribute Values Default Interpretation Stop.dayOfWeek If fixedDayEnable is set toStart.dayOfWeek Start.date is ignored TcpIpApp.port.rtp.filterByPort Must be enabled for this to workRTP rtp TcpIpApp.port.rtp.filterByIp Value that is out of range, Default value is usedWeb Server httpd Configuration cfg Call Handling Configuration call If call.stickyAutoLineSeize is set to 1, this Reg.x.callsPerLineKey. Refer to Registration Servers Shared Calls shared Hold, Local Reminder hold/localReminderSoundPoint IP 330/320 only Local Directory local Corporate Directory corp Directory dir Replaced by 2X the value Platform, this value is internally Corporate Directory corp Used for display purposes only Dir.corp.viewPersistence Presence pres SoundPoint IP 550, 600, 601, Fonts fontSoundPoint IP 320, 330, 430, 500 IP330 font IP330 IP400 font IP400 Keys key Functions Backgrounds bgFollowing table lists the functions that are available Bitmaps bitmap Indicators indFollowing indicators are used by the phone Platform IP300/, IP 330/, IP400 Attribute Permitted Interpretation Values Following table, x is the LED number LEDs led Level Interpretation Event Logging log Type Example Three formats are available for the event timestampTwo types of logging are supported You do not change this value Log.render.level maps to Been logged since the last upload Support append mode unlessServer is set up for this Uploaded if no new events have Security sec Encryption encryption Password Lengths pwd/length License license Platform Provisioning provRAM Disk ramdisk You do not change these Value Delay delayRequest request Feature feature Finder finder Quotas quotas Resource res Internally replaced by 2X the value Is internally replaced by 2X the value 650 and SoundStation IP 4000 phones Miscellaneous XML errors can occur onMicrobrowser mb SoundPoint IP 430, 501, 550, 560, 600 Function is selected If mb.main.idleTimeout Detrimental effect on performance of the phone Parameters include Per-Phone ConfigurationRegistration reg Permitted Attribute Values Default Interpretation A-7 Is non-Null, all of the reg.x.server.y.xxxParameters will override the parameters Specified in sip.cfg in Server server/ on Refer to Call Handling Configuration call Calls call If reg.x.serverFeatureControl.cf is not Do Not Disturb donotdisturb If call.missedCallTracking.x.enabled is Diversion divert Forwarding is enabled, thisParameter is enabled Divert.x.contact will be Calls can be automatically diverted when the phone is busy Dialplan.x.digitmap is not Enabled, this parameter isServer-base call forwarding is Dialplan.x.applyToUserDial When present, and if Digit Map digitmap/ on Messaging msg Message Waiting Indicator mwi Network Address Translation nat Attendant attendant VoIpProt.local.signalPort in sip.cfg Communications Server Roaming Buddies roamingbuddiesRoaming Privacy roamingprivacy Value 0 if the call server is Microsoft Live User Preferences userpreferences Flash Parameter Configuration For example, if device.net.ipAddress.set = EnabledThis flash attributes are defined as follows Name Possible Values Description Refer to Basic Logging level/change/ Session Initiation Protocol SIP RFC and Internet Draft Support Method Supported Request SupportFollowing SIP request messages are supported Header Supported Header SupportFollowing SIP request headers are supported Header Supported Response Supported Response SupportFollowing SIP responses are supported 3xx Responses Redirection 5xx Responses Server Failure Third Party Call Control Hold ImplementationReliability of Provisional Responses Transfer Bridged Line Appearance Signaling Shared Call Appearance Signaling Trusted Certificate Authority List Miscellaneous Administrative Tasks Administrator’s Guide SoundPoint IP / SoundStation IP Encrypting Configuration Files Administrator’s Guide SoundPoint IP / SoundStation IP Changing the Key on the Phone Adding a Background Logo Color RGB Values Decimal Hexadecimal Model Width Height Color DepthRGB Values BootROM/SIP Application Dependencies Migration Dependencies Model BootROM SIP Application Multiple Key Combinations SoundPoint IP Default Feature Key LayoutsIP 4000 Menu, Exit, Off-hook/Hands-free, Redial SoundStation IP 4000 models SoundPoint IP 320/330 SoundPoint IP OPER0 14 # 12 11OPER Key ID SoundPoint IP 550/560/600/601/650 SoundStation IP VLAN-A=10 VLAN-A=0x0a VLAN-A=012 Assigning a Vlan ID Using Dhcp Parsing Vendor ID Information Administrator’s Guide SoundPoint IP / SoundStation IP Third Party Software Administrator’s Guide SoundPoint IP / SoundStation IP Zlib Copyright and Permission Notice Third Party Software Administrator’s Guide SoundPoint IP / SoundStation IP Numerics Index Administrator’s Guide SoundPoint IP / SoundStation IP Dhcp Administrator’s Guide SoundPoint IP / SoundStation IP SIP Administrator’s Guide SoundPoint IP / SoundStation IP Addendum to SIP 3.0 Administrator’s Guide Managing Conferences New or Changed FeaturesNo feature keys on the SoundStation IP 7000 can be remapped Distribution Zip File SIREN22 Single Registration Daisy-Chaining Phones Treble/Bass Controls Provisioning Phones Over CLink Configuration File Changes These configuration attributes are defined as follows This new configuration attribute is defined as follows These new codecs include Voice Coding Algorithms codecs Codec Preferences codecPref Codec Profiles audioProfile Receive Equalization rxEq Gains gain Transmit Equalization txEq These new configuration attributes are defined as follows Multiple Key Combinations and Default Key Layout Key ID Administrator’s Guide Addendum for the SoundStation IP Addendum to SIP 3.0 Administrator’s Guide No feature keys on the SoundStation IP 6000 can be remapped Two-way audio would take over 100kbps Codec Preferences codecPref Codecs include Gains gain Multiple Key Combinations and Default Key Layout Key ID Function Administrator’s Guide Addendum for the SoundStation IP