![background image](http://html1.mh-extra.com/html/3com/vcx-v7122/vcx-v7122_user-manual_440856350.webp)
350
V7122 GatewayUser Guide
Must = the call is terminated. Incoming calls that don’t include encryption information are
rejected.
Prefer = an unencrypted call is established. Incoming calls that don’t include encryption
information are accepted.
To enable SRTP set the parameter EnableMediaSecurity to 1 (described in
Security
Parameters
).
•
When SRTP is used the channel capacity is reduced (see the parameter
EnableMediaSecurity).
•
The gateway only supports the AES 128 in CM mode cipher suite.
Figure 112
Example of crypto Attributes Usage
a=crypto:1 AES_CM_128_HMAC_SHA1_80 inline:PsKb5X0YLuSvNrImEh/dAe
a=crypto:2 AES_CM_128_HMAC_SHA1_32 inline:IsPtLc6XVzRuMqHlDnEiAd
RADIUS Login Authentication
Users can enhance the security and capabilities of logging to the gateway’s Web and Telnet
embedded servers by using a Remote Authentication Dial-In User Service (RADIUS) to store
numerous usernames, passwords and access level attributes (Web only), allowing multiple
user management on a centralized platform. RADIUS (RFC 2865) is a standard
authentication protocol that defines a method for contacting a predefined server and verifying
a given name and password pair against a remote database, in a secure manner.
When accessing the Web and Telnet servers, users must provide a valid username and
password. When RADIUS authentication isn’t used, the username and password are
authenticated with the Embedded Web Server’s usernames and passwords of the primary or
secondary accounts (see
User Accounts
) or with the Telnet server’s username and
password stored internally in the gateway’s memory. When RADIUS authentication is used,
the gateway doesn’t store the username and password but simply forwards them to the pre-
configured RADIUS server for authentication (acceptance or rejection). The internal Web /
Telnet passwords can be used as a fallback mechanism in case the RADIUS server doesn’t
respond (configured by the parameter BehaviorUponRadiusTimeout). Note that when
RADIUS authentication is performed, the Web / Telnet servers are blocked until a response
is received (with a timeout of 5 seconds).
RADIUS authentication requires HTTP basic authentication, meaning the username and
password are transmitted in clear text over the network. Therefore, users are recommended
to set the parameter ‘HttpsOnly = 1’ to force the use of HTTPS, since the transport is
encrypted.
Setting Up a RADIUS Server
The following examples see FreeRADIUS, a free RADIUS server that can be downloaded
from
www.freeradius.org
. Follow the directions on that site for information on installing and
configuring the server. If you use a RADIUS server from a different vendor, see its
appropriate documentation.
Summary of Contents for VCX V7122
Page 28: ...28 V7122 GatewayUser Guide ...
Page 39: ...V7122 Gateway User Guide 39 Reader s Notes ...
Page 40: ...40 V7122 GatewayUser Guide ...
Page 58: ...58 V7122 GatewayUser Guide Reader s Notes ...
Page 66: ...66 V7122 GatewayUser Guide Reader s Notes ...
Page 144: ...144 V7122 GatewayUser Guide Reader s Notes ...
Page 239: ...V7122 Gateway User Guide 239 Reader s Notes ...
Page 240: ...240 V7122 GatewayUser Guide ...
Page 246: ...246 V7122 GatewayUser Guide Reader s Notes ...
Page 270: ...270 V7122 GatewayUser Guide Reader s Notes ...
Page 287: ...V7122 Gateway User Guide 287 Reader s Notes ...
Page 288: ...288 V7122 GatewayUser Guide ...
Page 294: ...294 V7122 GatewayUser Guide Reader s Notes ...
Page 300: ...300 V7122 GatewayUser Guide Figure 88 Gateway s Startup Process ...
Page 315: ...V7122 Gateway User Guide 315 Reader s Notes ...
Page 316: ...316 V7122 GatewayUser Guide ...
Page 332: ...332 V7122 GatewayUser Guide Reader s Notes ...
Page 358: ...358 V7122 GatewayUser Guide Reader s Notes ...
Page 362: ...362 V7122 GatewayUser Guide Reader s Notes ...
Page 389: ...V7122 Gateway User Guide 389 Reader s Notes ...
Page 390: ...390 V7122 GatewayUser Guide ...
Page 398: ...398 V7122 GatewayUser Guide Reader s Notes ...
Page 406: ...406 V7122 GatewayUser Guide Reader s Notes ...
Page 408: ...408 V7122 GatewayUser Guide Reader s Notes ...
Page 409: ...V7122 Gateway User Guide 409 ...
Page 419: ...V7122 Gateway User Guide 419 Reader s Notes ...
Page 437: ...V7122 Gateway User Guide 437 Reader s Notes ...
Page 452: ...452 V7122 GatewayUser Guide Figure 137 UDP2File Utility ...
Page 453: ...V7122 Gateway User Guide 453 Reader s Notes ...
Page 459: ...V7122 Gateway User Guide 459 Reader s Notes ...
Page 475: ...V7122 Gateway User Guide 475 ...