EasyManua.ls Logo

Avaya J129 - Access Control and Security; Private Key Storage; Security Event Logging

Avaya J129
353 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Maintenance of integrity when the phone is under Denial of Service (DoS) attack. In this
case, the phone goes into out-of-service mode.
DRBG random number generator compliant with SSL FIPS 140–2.
SHA2 hash algorithm and strong encryption (256 bit symmetric and RSA 2048 and 4096 bit
asymmetric keys) for all cryptographic operations.
Deprecated support for SHA1 algorithms in all cryptographic algorithms.
SRTP/SRTCP and TLS v1.2.
SRTP is used to encrypt and secure the audio going to and from the phone. You must
configure equivalent parameters in Communication Manager or System Manager. You must
configure the following three parameters on the phones and equivalent Communication
Manager parameters must match one of the parameters:
- SET ENFORCE_SIPS_URI 1
- SET SDPCAPNEG 1
- SET MEDIAENCRYPTION X1, X2, 9. Valid values for X are 1 to 8 for aescm128-hmac80 ,
and 10 or 11 for aescm256-hmac80
Note:
The Administration menu provides access to certain administrative procedures on the
phone. You must change the default password for the Administration menu to restrict
users from using the administrative procedures to change the phone configuration.
Remote access to the phone is completely disabled by default.
You should not use unauthenticated media encryption (SRTP) files.
Access control and security
Phones provide the following security features for control and access:
Security event logging
Logs are maintained for the following events:
Successful and failed logins, username lockouts, and registration and authorization attempts
by users and administrators.
Change in roles.
Firewall configuration changes.
Modification or access to critical data, applications, and files.
Private Key storage
The phone stores the private key in PKCS#12 and PEM file formats. The phone sends the device
identity certificate and a private key along with the encrypted password to the WPA supplicant.
EAP-MD5 password is sent to the WPA supplicant securely.
Access control and security
July 2019 Installing and Administering Avaya J100 Series IP Phones 189
Comments on this document? infodev@avaya.com

Table of Contents

Other manuals for Avaya J129

Preview: User Guide
User Guide188 pages
Preview: Installing
Installing282 pages
Preview: Using Manual
Using Manual55 pages
Preview: Instructions
Instructions70 pages
Preview: Configuration Guide
Configuration Guide23 pages
Preview: User Manual
User Manual61 pages
Preview: Partner Configuration Guide
Partner Configuration Guide24 pages
Preview: Manual
Manual29 pages
Preview: Quick Reference Guide
Quick Reference Guide3 pages
Preview: Quick Reference
Quick Reference5 pages
Preview: Using
Using76 pages

Related product manuals