1-13
Cisco Unified IP Phone Administration Guide for Cisco Unified Communications Manager 8.5
OL-23092-01
Chapter 1 An Overview of the Cisco Unified IP Phone
Understanding Security Features for Cisco Unified IP Phones
Understanding Security Features for Cisco Unified IP Phones
Implementing security in the Cisco Unified Communications Manager system prevents identity theft of
the phone and Cisco Unified Communications Manager server, prevents data tampering, and prevents
call signaling and media stream tampering.
To alleviate these threats, the Cisco Unified IP telephony network establishes and maintains
authenticated and encrypted communication streams between a phone and the server, digitally signs files
before they are transferred to a phone, and encrypts media streams and call signaling between
Cisco Unified IP phones.
The Cisco Unified IP Phones 7975G, 7971G-GE, 7970G, 7965G, and 7945G use the Phone Security
Profile, which defines whether the device is nonsecure, authenticated, or encrypted. For information on
applying the security profile to the phone, refer to
Cisco Unified Communications Manager Security
Guide
.
If you configure security-related settings in Cisco Unified Communications Manager Administration,
the phone configuration file will contain sensitive information. To ensure the privacy of a configuration
file, you must configure it for encryption. For detailed information, refer to
Configuring Encrypted
Phone Configuration Files
in
Cisco Unified Communications Manager Security Guide
.
Table 1-3
shows where you can find additional information about security in this and other documents.
Table 1-3
Cisco Unified IP Phone and Cisco Unified Communications Manager Security Topics
Topic
Reference
Detailed explanation of security, including set up,
configuration, and troubleshooting information for Cisco
Unified Communications Manager and Cisco Unified
IP Phones
Refer to the
Troubleshooting Guide for Cisco Unified
Communications Manager
Security features supported on the Cisco Unified IP Phone
See
Overview of Supported Security Features, page 1-14
Restrictions regarding security features
See
Security Restrictions, page 1-21
Viewing a security profile name
See
Understanding Security Profiles, page 1-16
Identifying phone calls for which security is implemented
See
Identifying Authenticated, Encrypted, and Protected
Phone Calls, page 1-17
TLS connection
See
What Networking Protocols are Used?, page 1-6
See
Understanding Phone Configuration Files, page 2-7
Security and the phone startup process
See
Understanding the Phone Startup Process, page 2-9
Security and phone configuration files
See
Understanding Phone Configuration Files, page 2-7
Changing the TFTP Server 1 or TFTP Server 2 option on the
phone when security is implemented
See
Table 4-2
in the
Network Configuration Menu, page 4-5
Understanding security icons in the Unified CM 1 through
Unified CM 5 options in the Device Configuration Menu on
the phone
See
Unified CM Configuration, page 4-18
Items on the Security Configuration menu that you access
from the Device Configuration menu on the phone
See
Security Configuration Menu, page 4-30
Items on the Security Configuration menu that you access
from the Settings menu on the phone
See
Security Configuration Menu, page 4-36