Configuring the Device Security Mode

After you have configured the Cisco CallManager for mixed mode using the CTL Client and the Cisco IP Phones have certificates, you must configure the IP Phones to support authenticated or encrypted calls. You can use the device security mode to configure a Cisco IP Phone for one of three security modes:

  • Non Secure The IP Phone will not support authenticated or encrypted calls.
  • Authenticated The IP Phone will support authenticated calls.
  • Encrypted The IP Phone will support encrypted calls.

The default device security mode is configured in the Cisco CallManager Enterprise Parameters window; choose Cisco CallManager Administration > System > Enterprise Parameters. The default mode is Non Secure.

In addition to setting the default value, you can configure each individual IP Phone with the device security mode. Choose Cisco CallManager Administration > Device > Phone to display the Phone Configuration window, as shown in Figure 27-8. The default mode is Use System Default.

Figure 27-8. Configuring IP Phone Security Options


In several situations, you should not use cryptographic services for Cisco IP Phones at all. With some Cisco IP Contact Center (IPCC) applications, for instance, cleartext signaling messages or media packets have to be seen by other devices (for instance, attached PCs). Another example is the use of Network Address Translation (NAT) or Port Address Translation (PAT). Because the translating device has to see cleartext signaling messages to be able to dynamically allow the negotiated UDP ports that will be used for Real-Time Transport Protocol (RTP), encryption cannot be used.

Part I: Cisco CallManager Fundamentals

Introduction to Cisco Unified Communications and Cisco Unified CallManager

Cisco Unified CallManager Clustering and Deployment Options

Cisco Unified CallManager Installation and Upgrades

Part II: IPT Devices and Users

Cisco IP Phones and Other User Devices

Configuring Cisco Unified CallManager to Support IP Phones

Cisco IP Telephony Users

Cisco Bulk Administration Tool

Part III: IPT Network Integration and Route Plan

Cisco Catalyst Switches

Configuring Cisco Gateways and Trunks

Cisco Unified CallManager Route Plan Basics

Cisco Unified CallManager Advanced Route Plans

Configuring Hunt Groups and Call Coverage

Implementing Telephony Call Restrictions and Control

Implementing Multiple-Site Deployments

Part IV: VoIP Features

Media Resources

Configuring User Features, Part 1

Configuring User Features, Part 2

Configuring Cisco Unified CallManager Attendant Console

Configuring Cisco IP Manager Assistant

Part V: IPT Security

Securing the Windows Operating System

Securing Cisco Unified CallManager Administration

Preventing Toll Fraud

Hardening the IP Phone

Understanding Cryptographic Fundamentals

Understanding the Public Key Infrastructure

Understanding Cisco IP Telephony Authentication and Encryption Fundamentals

Configuring Cisco IP Telephony Authentication and Encryption

Part VI: IP Video

Introducing IP Video Telephony

Configuring Cisco VT Advantage

Part VII: IPT Management

Introducing Database Tools and Cisco Unified CallManager Serviceability

Monitoring Performance

Configuring Alarms and Traces

Configuring CAR

Using Additional Management and Monitoring Tools

Part VIII: Appendix

Appendix A. Answers to Review Questions


Authorized Self-Study Guide Cisco IP Telephony (CIPT)
Cisco IP Telephony (CIPT) (Authorized Self-Study) (2nd Edition)
ISBN: 158705261X
EAN: 2147483647
Year: 2004
Pages: 329 © 2008-2020.
If you may any questions please contact us: