Aastra 6700i Series Installation Instructions Manual Download | Manualshive

Page: 80 / 88

background image

A

ASTRA

6700

I

SIP T

ERMINALS

FOR

MX-ONE

80

26/1531-ANF 901 14 Uen E10 2014-01-22

Check the CMG documentation if Corporate directory is to use
https (TLS), for example:

https://192.20.22.11/xml/directory/CorpDir.php

5.

Per default a time server (using NTP as protocol) needs to be
enabled via DHCP Option 42 or via configuration parameters. The
configuration parameter has precedence over Option 42. The
phone must have a valid date and time in order to verify the server
certificate’s expiry time. As TLS is a per-hop protocol. It is the
server certificate of ‘outbound proxy ip’ which is verified. In this
example this would be an MX-ONE server.

Configuration parameters

time server disabled:0 #0-enabled,1-disabled

time server1:<ip address or host>

#ref: http://www.pool.ntp.org/en/use.html

6.

If no NTP servers are accessible for some reason it is possible to
disable the check for expire date via WebGUI(Network) or configu-
ration parameter. This will also have the effect that there is no date
and time indication on the phone.

https validate expires: 0 #0-disabled, 1-enabled

19.5

How to enable security for home worker on
Aastra 6700i

If Ingate is used as Session Border Controller (SBC), follow the Installa-
tion Guide

How to Install an Ingate Solution for Aastra Teleworker Solu-

tions in Stand-alone mode or DMZ/LAN mode behind existing Firewall

in

the CPI library.

The principle used here is to configure the SBC to have secure commu-
nication on the outside towards the home worker Aastra 6700i terminal
and unsecure communication on the inside towards MX-ONE.

The TLS setup described here will be persistent TLS. If your deployment
requires an even more secure setup, ‘persistent mutual TLS’, then also
read the Appendix, “Teleworker with persistent mutual TLS”.

Furthermore the assumption is that the user would like to be able to use
the terminal in the office and to bring the terminal home (home worker).
For this reason two configuration server directories are set up, inOffice
accessible via http and atHome accessible via https.

The only setting required by the end user is to change the Configuration
Server via phoneUI:

Options

>

Admin Menu

> [6739i;

Advanced

] >

Cfg. Svr.

, choose HTTP or HTTPS in the Download Protocol list. Acti-

vate setting by requesting

Options

>

Restart

.

«
...
78
79
80
81
82
...
»

Summary of Contents for 6700i Series

Page 1: ...INSTALLATION INSTRUCTIONS INSTALLATION INSTRUCTIONS 26 1531 ANF 901 14 E10 2014 01 22 Aastra 6700i SIP Terminals for MX ONE Amiler Amiler Arne Miler amiler...

Page 2: ...aimer No part of this document may be reproduced in any form without the written permission of the copyright owner The contents of this document are subject to revision without notice due to continued...

Page 3: ...SIP Phones There is also one platform independent installation guide per telephone model available on www aastra com 1 2 Glossary Some expressions in this document follows the expressions used in MX...

Page 4: ...AASTRA 6700I SIP TERMINALS FOR MX ONE 4 26 1531 ANF 901 14 Uen E10 2014 01 22 1 3 Environmental Requirements See Administrator Guide for Aastra Models 6700i and 9000i Series IP SIP Phones...

Page 5: ...26 1531 ANF 901 14 Uen E10 2014 01 22 5 CABLING 2 Cabling See Administrator Guide for Aastra Models 6700i and 9000i Series IP SIP Phones...

Page 6: ...er through the Ethernet cable on pins 4 5 and 7 8 The power injector is available as an optional accessory Table 2 Power classes for the different phone models Maximum one expansion module with PoE Up...

Page 7: ...26 1531 ANF 901 14 Uen E10 2014 01 22 7 EARTHING AND GROUNDING 4 Earthing and Grounding See Administrator Guide for Aastra Models 6700i and 9000i Series IP SIP Phones...

Page 8: ...enerated through Manager Telephony System the IP Phone SW Server Configu ration Management Application must be installed on the IP Phone SW Server Once generated the configuration files can viewed dir...

Page 9: ...nformation see the IP Phone SW Server release notes for additional installation information See also section 8 1 Phone soft ware and configuration files on the software server on page 24 on how to man...

Page 10: ...ue without config uring a Tomcat administrator is displayed 10 Click Yes The step Choose Install Location is displayed 11 Click Install When the installation is complete you will get a message Install...

Page 11: ...tart Tomcat by going to Control Panel Administrative Tools Services Restart the service Jakarta Tomcat 4 Connect MTS to IP Phone SW Server Configuration Management Application on port 82 using the MTS...

Page 12: ...ias example aastra67xxi Enter the path to the folder under Tomcat example C jakarta tomcat 4 1 31 webapps ROOT aastra67xxi Enable the Read option and finish the wizard You can now access the Tomcat fo...

Page 13: ...another port number than 80 the port number can be set manually in the file jakarta tomcat 4 1 31 conf server xml where 4 1 31isan example 5 3 1 Verify that the Apache Tomcat server is running Use th...

Page 14: ...ration files The information regarding parameters is available in the online help for MX ONE Manager Telephony System The picture below shows an example of the page in the IP Phone Configuration File...

Page 15: ...select the Unregistration option to force the telephones to fetch the new configuration file The telephones will after less than 24 hours automatically fetch the new configuration file and if necessa...

Page 16: ...tion File to Manager Telephony System In a system where MX ONE Manager Telephony System has not previ ously been used when working with an IP phone configuration file the existing configuration file c...

Page 17: ...e is a need to go back to the previous version the following procedure shall be used 1 Log on to MX ONE Manager Telephony System 2 Go to Telephony IP Phone Configuration File 3 Use the back up retriev...

Page 18: ...rver must be set up supporting any of the protocols HTTP or HTTPS to host the phone firmware language files and configuration files The firmware files can be downloaded from Service Support Plaza Ther...

Page 19: ...N Y Connect to SW server Recommended protocols http or https Reboot Get security tuz This file contains the encrypted site key Use the anacrypt tool to create security tuz and encrypt the config files...

Page 20: ...9 Setting the IP Address of the SIP proxy registrar on page 35 7 3 Log on Log off To get log on log off working the configuration file shall be created in MTS and if this is not possible it shall be...

Page 21: ...n to MX ONE is described in the Quick Reference Guide for each telephone model The necessary settings in the configuration files for this are created auto matically when using MTS In the configuration...

Page 22: ...off 7 3 3 Change of PIN code The user can change the PIN code by entering the procedure 74 old PIN new PIN Note If a mac cfg file is used the PIN code must manually be changed also in this file 7 4 Lo...

Page 23: ...sip line1 password PIN code If the PIN code is changed in MX ONE it must also be manually changed in the mac cfg file Inactivate action uri startup set in aastra cfg by setting it to an empty string...

Page 24: ...File task in Manager Telephone Server MTS If it is not possible to use MTS the aastra cfg template must be used which is stored in MX ONE under etc opt eri_sn aastraSIPphones aastra tuz This is the en...

Page 25: ...nfigu ration file has to be adapted for each installation and then it has to be encrypted see 19 1 Encrypted Configuration Files on page 77 lang_ nn txt This file contains the display text in the spec...

Page 26: ...ed configuration file Both regis tered and not registered terminals will be updated Example from the configuration file auto resync mode 3 Check for new fw and configuration files every day auto resyn...

Page 27: ...Restart Phone 9 2 Remove local configuration settings All configuration made on the phone via Web UI or configured by MX ONE at logon is stored as local configuration in the phone By removing the loca...

Page 28: ...ial setting If configuration server is not set via dhcp options you will need to set it again If the configuration server shall be accessed via https only the commercial root CAs Verisign etc are prel...

Page 29: ...ter the administrator password 22222 which is the default pass word but can be changed Web UI Find the IP address of the telephone by selecting Options Phone Status IP MAC Addresses Enter the IP addre...

Page 30: ...one user interface Press Options key To enter the web user interface Find the IP address of the telephone by selecting Options Phone Status IP MAC Addresses Enter the IP address to the telephone into...

Page 31: ...both EAP MD5 and EAP TLS protocols Figure 3 Components in LAN access control Below is an example of the settings in the phone configuration file aastra cfg when EAP TLS shall be used eap type 2 identi...

Page 32: ...on protect dot1x pae authenticator auto qos voip trust mls qos trust dscp spanning tree portfast Radius server In the Radius server the certificate matching the one in the phones must be available whe...

Page 33: ...phone was manufactured this problem can still occur at new installation If this problem occurs the recommendation is to set the timer in the LAN switch temporarily to 5 seconds start the phones with a...

Page 34: ...omati cally using the DHCP server To be able to set the IP address to the default gateway manually DHCP must first be disabled on the phone see11 5 Enabling Disabling DHCP on page 33 Options Admin Men...

Page 35: ...lobal SIP Basic SIP Basic SIP Network Settings 11 10 Using Virtual LAN VLAN The following VLAN data can be set Enable VLAN tagging VLAN identity The following configuration alternatives are available...

Page 36: ...4 lang_sv txt language 4 In the example English German French Spanish and Swedish will be shown in the phone menu with Screen Language and the default language will be Swedish See also section 8 1 Ph...

Page 37: ...730i 31i Aastra6753i 6735i 55i Expansion module key see section 14 Expansion Modules on page 65 The softkeys are reserved in the following way 1 4 system keys For MX ONE busy services call back call p...

Page 38: ...n in the display For example if the softkey with key number 10 is programmed with a speed dial number the softkey will show up in the telephone display on the first key position with type equal to non...

Page 39: ...rtain model The following options are possible to set speeddial xml speeddialxfer the softkey is configured to transfer calls and configured for speed dialing to a specific number speeddialconf the so...

Page 40: ...de the default key layout You may decide that the a specific phone shall have an extension number which shall not be logged off and not to be used for free seating See Chapter Logon Off Key Not Used S...

Page 41: ...01 22 41 CONFIGURING THE PHONE Figure 5 Aastra 6735i 55i Figure 6 Aastra 6753i Services LocalDir CallList MsgWaiting Diversion Logon Log off CorpDir Save directory Delete directory Local directory Ca...

Page 42: ...ANF 901 14 Uen E10 2014 01 22 Figure 7 Aastra6739i Figure 8 Aastra 6730 31 Log on off CorpDir Diversion Callers list Services MsgWaiting Services Save contacts Delete contacts Directory Local or corpo...

Page 43: ...Telephony Server and is read by it at start up but not by the telephones directly This file contains telephone model specific definitions of function keys that shall be pushed to the telephone e g Lo...

Page 44: ...ers Settings apply to all tele phones of the same model In the example above the logon logoff key is disabled for all 6731i telephones and all keys are open for programming since the offset value is z...

Page 45: ...Telephony tab Add a SW server for your configuration files 7 Restart a unit SIPLP to activate changes use command restart u SIPLP lim x Figure 12 SW Server 8 Specify a IP Phone server and a domain fol...

Page 46: ...ist The admin may also manually type in any IP Server address at which the MP should read the model specific configuration files This possibility is there in case there is no association between an MT...

Page 47: ...dit the special extensions in the Extension task click the Advanced button and select the IP Phone Server and or Domain Folder previously defined in the dropdown lists 11 13 4 Assigning Phone Numbers...

Page 48: ...te Do not program softkey 1 8 because these can interfere with keys used by the system To edit an existing speed dial key from the phone UI Options Preferences Speed Dial Edit 11 13 5 Assigning MNS Ke...

Page 49: ...erminal models can be initiated to have SCA lines Aastra 6730i 31i 6739i 6735i 55i 6737i 57i The extension number for a SCA line can be represented on a number of terminals The main SCA extension numb...

Page 50: ...or 6735i 55i and 6737i 57i The busy services call back and call pickup are shown on softkeys on page 1 when calling a busy extension Call waiting and intrusion are shown on softkeys on page 2 which me...

Page 51: ...e The possibility to initiate a three part conference locally in the phone is disabled The conference softkey sends an xml request to the exchange to initiate a conference 11 14 Initiating Data from M...

Page 52: ...the softkeys Log on off Services Corp Dir Msg Wait key 9 and More belongs to the first page Key 10 11 12 13 14 and More to the next page and 15 16 17 18 19 and 20 to the last page 11 15 Dial Plan The...

Page 53: ...unction code and number will be shown in as they are entered and the authentication code will be replaced by stars Example the user enters 75 99999 6709 where 99999 is the authorization code and 6709...

Page 54: ...he Divert function for A6700i SIP extensions is a simplified type of diversion and has not the same functionality as the diversion function for digital and analogue telephones Note There is support in...

Page 55: ...umber list shall be initiated for an existing extension Select the extension Change the CSP to the one for default personal number list Press Apply Select Personal Number Edit Change the phone numbers...

Page 56: ...he PBX and no settings are required in the configuration file for the telephone When message diversion is active the lamp at the Diversion key is lit Note It is necessary to set the time and date form...

Page 57: ...10 sip dns srv1 weight 50 sip dns srv1 port 5060 sip dns srv1 target mx one server2 example com sip dns srv2 name _sip_udp example com sip dns srv2 priority 10 sip dns srv2 weight 50 sip dns srv2 port...

Page 58: ...ne as an Operator Media Device OMD Not applicable A telephone is called Operator Media Device when it is used for the speech together with a operator work station application for example CMG NOW Atten...

Page 59: ...alled HLR Home Location Register server the configuration is a part of the initial REGISTER procedure The phones will as the main rule be registered in their home server but if the Type of signalling...

Page 60: ...is registered towards the backup sip registrar the telephone tries to register towards the primary server If this server responds the phone tries to register towards the primary proxy server again The...

Page 61: ...age 60 or see 11 22 Using DNS SRV Resource Records on page 57 11 30 Voice Mail When a user has got a voice mail and the message waiting key is flashing the user can listen to his voice mail by pressin...

Page 62: ...31 1 CMG directory For details how to set up CMG to access the corporate directory from the 6700i phones see Corporate Directory for IP phone Installation Configuration Guide in the CMG CPI library 11...

Page 63: ...hone s web interface or phone menus 12 1 Changing the Administrator Password The administrator password can be changed from the aastra cfg file see Administrator Guide for Aastra Models 6700i and 9000...

Page 64: ...the DHSG protocol as well as headsets with cable can be used with 6735i 37i 6737 57i 6739i and 6753i To connect the phone to a DHSG compatible cordless headset a special cable from Aastra must be used...

Page 65: ...label the keys Maximum 3 modules can be connected to the telephone The following models has support for the key panel unit 6735i 55i 6737i 57i and 6739i For installation of the modules see the phone...

Page 66: ...gistered to the PBX it is possible to make emergency calls The sip proxy ip parameter in the configuration file defines where the telephone sends the INVITE with the SOS number No registrar is require...

Page 67: ...e the following options 1 Total recording the recording system orders the telephone to start the recording dependent on the recording policy All calls or only external calls to the monitored extension...

Page 68: ...ort protocol The following options exist 1 default which means that the same protocol will be used as defined in the parameter sip transport protocol parameter 0 TCP UDP 1 UDP 2 TCP 16 2 Configuration...

Page 69: ...ERNAME where n is the extension number added by the telephone The IP address and port number must match the recorder s listening IP address and port number Stop recording http 192 105 88 152 8080 XVOI...

Page 70: ...AASTRA 6700I SIP TERMINALS FOR MX ONE 70 26 1531 ANF 901 14 Uen E10 2014 01 22 17 Quality of Service QoS It is not possible to view the QoS statistics via MX ONE...

Page 71: ...name but DHCP option 60 vendor class identifier and option 43 vendor specific information field can also be used The following examples show the different possibilities on how to use option 66 160 or...

Page 72: ...nfigure option 60 and 43 in a Linux environ ment see the Administrator Guide for Aastra IP SIP Phones Below is an example showing how to configure DHCP in a Windows environment Model Identifier Value...

Page 73: ...Vendor Class in the drop down list Figure 16 Define and add the vendor class To enter the Vendor Class ID click on the right side below ASCII in the large form field Enter the Identifier Value from t...

Page 74: ...ANF 901 14 Uen E10 2014 01 22 18 3 2 Set Predefined Options Select Set Predefined Options to get the menu to enter the option 43 data Figure 17 Set Predefined Options Select appropriate option class...

Page 75: ...n Type menu has to be entered manually Name Configuration Server URL Data type String Code 02 Repeat this for each phone model that should be served by this DHCP server If VLAN identity shall be provi...

Page 76: ...endor class and set the User class to Default User Class Activate option 002 and enter the URL of the software server configuration server in the input field String value Repeat this for each phone mo...

Page 77: ...file anacrypt model cfg p shared_password 4 If MAC configuration files are used encrypt the MAC cfg file anacrypt mac cfg m p shared_password To encrypt all MAC configuration files in a directory ana...

Page 78: ...ves non secured RTP calls If the IP phone gets a call from a SRTP enabled phone it ignores SRTP and tries to answer the call using RTP If the receiving phone has SRTP only enabled the call fails howev...

Page 79: ...0 RTP 1 SRTP preffered 2 SRTP only With the backup outbound parameters security is enabled towards the backup server If the XML keys provisioned by MX ONE shall use https the following setting is req...

Page 80: ...ate expires 0 0 disabled 1 enabled 19 5 How to enable security for home worker on Aastra 6700i If Ingate is used as Session Border Controller SBC follow the Installa tion Guide How to Install an Ingat...

Page 81: ...server setting in the phone configuration If Apache is used the var www html is the root for the path set in the phone So here you create the directories inOffice and atHome 2 The InOffice directory s...

Page 82: ...lay can be config ured in Ingate the same way as port 444 is setup towards the configuration server Let s say port 445 is set up then the Corpo rate Directory key value would be https 193 10 10 10 445...

Page 83: ...ocation Register HLR see the lim setting in command extension p sip proxy ip 0 0 0 0 sip proxy port 0 sip registrar ip 0 0 0 0 sip registrar port 0 time server disabled 0 0 NTP enabled skip the server...

Page 84: ...n SuSEconfig to initiate the changes to the syslog ng configuration Restart the syslog process etc init d syslog restart Verify that syslog is listening on port 514 linux jloz netstat nap grep 514 udp...

Page 85: ...sues with DHCP Options If there is a conflict in the network on what the DHCP Options are used for you can change or turn off the use of DHCP Options locally on each phone On the phone press Options k...

Page 86: ...cate The SBC who is the access point for traffic from a teleworker perhaps working from home and is configured to do client authenti cated TLS will only allow clients phones which offers the expected...

Page 87: ...rivate cakey pem days 3650 CAcreateserial CAserial ca seq Output signed server certificate sbccert pem On Ingate web import the signed server certificate Go to Basic Configuration Certificates import...

Page 88: ...cfg configuration sips persistent tls 1 sip outbound support 1 sip transport protocol 4 UDP 1 TCP 2 SIP UDP 0 TLS 4 sips trusted certificates ca pem sips root and intermediate certificates ca pem sips...

Reviews:

No comments

Related manuals for 6700i Series

Brand: Handpoint Pages: 12

MorphoAccess SIGMA Lite Series

Brand: Idemia Pages: 32

Brand: globalpayments Pages: 33

Brand: True Value Pages: 18

Brand: GIETEK Pages: 34

AUTOID Q7 Series

Brand: Seuic Pages: 103

Cinterion BGS5T USB

Brand: Gemalto Pages: 50

Brand: Techno Trade Pages: 192

Brand: Crestron Pages: 6

Brand: Hisense Pages: 14

Brand: Hisense Pages: 15

Brand: Hisense Pages: 18

Brand: Hisense Pages: 32

Brand: Hisense Pages: 36

Brand: POSIFLEX Pages: 28

Brand: Orderman Pages: 21

Brand: Idemia Pages: 11

Trakker Antares 2455

Brand: Intermec Pages: 12

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands