inoperable. Re-authentication interval is controlled by the Layer 2 switch re-authentication interval
parameter. The minimum supported re-authentication interval when EAP-MD5 and EAP-PEAP are
configured is 10 seconds; for EAP-TLS, the minimum interval is 20 seconds.
Provisioning configuration file download
Securely download provisioning configuration files through HTTPS.
Provisioning configuration files download through HTTPS
The IP Deskphone can contact a provisioning server and download an 12xxSIP.cfg file to identify
additional files and protocols used. When a file is identified, and the protocol specified in the
"protocol" parameter is HTTPS, the IP Deskphone contacts the target server and negotiates a TLS
connection. Then, the IP Deskphone downloads the specified file and terminates the connection.
HTTP connection over TLS is established by using single or mutual authentication.
HTTPS support in BootC mode
When a firmware upgrade is performed and there is not enough memory to allocate a buffer for new
firmware, the IP Deskphone automatically reboots and BootC is loaded. HTTPS is supported for
downloading provisioning files (for example, 1220SIP.cfg) and firmware images from the
Provisioning Server. It uses the embedded and customer certificates that are installed on the IP
Deskphone.
BootC downloads the provisioning file (for example, 1220SIP.cfg). Only the [FW] section of this file
is processed. BootC uses the same settings (for example, Provisioning Server URL, protocol) that
are used in normal mode. BootC performs the firmware upgrade, and the IP Deskphone
automatically reboots again. The IP Deskphone starts up with new firmware in Normal mode.
Note:
Regardless of whether the firmware upgrade was successful or not, the [FW] section does not
offer to update during the IP Deskphone reboot
Both mutual authentication and server-only authentication methods are supported. The TLS
connection cipher is set according to the security policy configured on the IP Deskphone (the
security policy must be configured in Normal mode). The default cipher is
TLS_RSA_WITH_AES_256_CBC_SHA.
Important:
Customer certificates must be installed in Normal mode.
Provisioning configuration file download
March 2015 SIP Software for Avaya 1200 Series IP Deskphones-Administration 269
Comments? infodev@avaya.com
To Next Page
Loading...
