CHAPTER 9
Cisco IP Phone Security
• Domain and Internet Setting, on page 117
• Configure the Challenge for SIP INVITE Messages, on page 120
• Transport Layer Security, on page 121
• HTTPS Provisioning, on page 122
• Enable the Firewall, on page 125
• Configure Your Firewall with Additional Options, on page 127
• Configure the Cipher List, on page 129
• Enable Hostname Verification for SIP over TLS, on page 131
• Enable Client-Initiated Mode for Media Plane Security Negotiations, on page 132
• 802.1X Authentication, on page 133
• Cisco Product Security Overview, on page 135
Domain and Internet Setting
Configure Restricted Access Domains
You can configure the phone to register, provision, firmware upgrade, and send reports using only the specified
servers. Any registration, provisioning, upgrade, and report that don't use the specified servers can't be
performed on the phone. If you specify the servers to use, ensure that the servers you enter in the following
fields are included in the list:
• Profile Rule, Profile Rule B, Profile Rule C, and Profile Rule D on the Provisioning tab
• Upgrade Rule and Cisco Headset Upgrade Rule on the Provisioning tab
• Report Rule on the Provisioning tab
• Custom CA Rule on the Provisioning tab
• Proxy and Outbound Proxy on the Ext (n) tab
Before you begin
Access the Phone Web Interface, on page 104.
Cisco IP Phone 8800 Series Multiplatform Phone Administration Guide for Release 11.3(1) and Later
117
To Next Page
Loading...
Need help?
General