Version 5.2 207 September 2007
SIP User's Manual 5. Web-based Management
Table 5-41: General Security Settings Parameters
Parameter Description
Secured Web Connection
[HTTPSOnly]
Determines the protocol types used to access the Embedded Web
Server.
 [0] HTTP and HTTPS (default).
 [1] HTTPS only = Unencrypted HTTP packets are blocked.
HTTP Authentication Mode
[WebAuthMode]
Determines the authentication mode for the Embedded Web Server.
 [0] Basic = Basic authentication (clear text) is used (default).
 [1] Digest When Possible = Digest authentication (MD5) is used.
 [2] Basic if HTTPS, Digest if HTTP = Digest authentication (MD5)
is used for HTTP, and basic authentication is used for HTTPS.
Note: When RADIUS login is enabled (WebRADIUSLogin = 1), basic
authentication is forced.
TLS version
[TLSVersion]
Defines the supported versions of SSL/TLS (Secure Socket
Layer/Transport Layer Security.
 [0] SSL 2.0-3.0 and TLS 1.0 = SSL 2.0, SSL 3.0, and TLS 1.0 are
supported (default).
 [1] TLS 1.0 Only = only TLS 1.0 is used.
When set to [0], SSL/TLS handshakes always start with SSL 2.0 and
switch to TLS 1.0 if both peers support it. When set to [1], TLS 1.0 is
the only version supported; clients attempting to contact the device
using SSL 2.0 are rejected.
RADIUS General Settings
Enable RADIUS Access
Control
[EnableRADIUS]
Enables / disables the RADIUS application.
 [0] Disable = RADIUS application is disabled (default).
 [1] Enable = RADIUS application is enabled.
Use RADIUS for Web/Telnet
Login
[WebRADIUSLogin]
Uses RADIUS queries for Web and Telnet interface authentication.
 [0] Disable (default).
 [1] Enable.
When enabled, logging in to the gateway's Web and Telnet
embedded servers is performed via a RADIUS server. The gateway
contacts a predefined server and verifies the given username and
password pair against a remote database, in a secure manner.
Notes:
 The parameter EnableRADIUS must be set to 1.
 RADIUS authentication requires HTTP basic authentication,
meaning the username and password are transmitted in clear text
over the network. Therefore, it's recommended to set the
parameter HttpsOnly to 1 to force the use of HTTPS, since the
transport is encrypted.
RADIUS Authentication
Server IP Address
[RADIUSAuthServerIP]
IP address of the RADIUS authentication server.
To Next Page
Loading...
Need help?
General