Administrator's Manual 7. Configuring Security
Version 3.4.3 159 400HD Series IP Phones
7.4.1 Configuring 802.1x in the Phone Screen
The network administrator can configure 802.1x in the phone screen.
To configure 802.1x in the phone screen:
1. On the phone, open the 802.1x Settings screen (MENU key > Administration >
Network Settings > 802.1xSettings).
2. Navigate to and select either:
• Disabled – disables the 802.1x feature
• EAP-MD5 – see Section 7.4.1.1
• EAP-TLS - see Section 7.4.1.2
7.4.1.1 Configuring EAP-MD5 Mode
EAP-MD5 mode can be configured for 802.1x using the phone's screen.
To configure EAP-MD5 mode for 802.1x using the phone's screen:
1. Navigate to the EAP-MD5 option and then press Select and Edit:
2. Enter the following information:
• Identity: User ID
• Password: MD5 password (optional)
3. Press the Save softkey; a message appears notifying you that the phone will restart.
4. Press Apply.
7.4.1.2 Configuring EAP-TLS Mode
EAP-TLS mode can be configured for 802.1x using the phone's screen.
To configure EAP-TLS mode for 802.1x using the phone's screen:
1. Navigate to the EAP-TLS option and press Select
2. Press the Save softkey; a message appears notifying you that the phone will restart.
3. Press Apply.
To configure EAP TLS using the Configuration File:
Open the Configuration File page (Management tab > Manual Update >
Configuration File) and configure the parameters using the table below as reference.
Table 7-6: EAP TLS Parameters
Parameter Description
EAP Type
[/network/lan/_802_1x/eap_type]
Sets 802.1X EAP mode.
[Disable] = Disables the use of 802.1X
[EAP_TLS]= Authentication is implemented by
Certificate, Client Certificate, and Client Private
Key.
network/lan/_802_1x/eap_identity User ID for EAP-TLS mode
Note: Make sure the Root CA certificate and the Private Key certificate are installed on
the RADIUS server as well.
To Next Page
Loading...
