Security Features
385
Parameter static.security.default_ssl_method <y0000000000xx>.cfg
Description It configures the TLS version the IP phone uses to authenticate with the server.
Permitted
Values
0-TLS 1.0 only
3-SSL V23 (automatic negotiation with the server. The phone starts with TLS1.2 for negotiation.)
4-TLS 1.1 only
5-TLS 1.2 only
Default 3
Parameter
static.security.trust_certificates
[3]
<y0000000000xx>.cfg
Description It enables or disables the IP phone to only trust the server certificates in the Trusted Certificates list.
Permitted
Values
0-Disabled, the IP phone will trust the server no matter whether the certificate sent by the server is valid
or not.
1-Enabled, the IP phone will authenticate the server certificate based on the trusted certificates list. Only
when the authentication succeeds, will the IP phone trust the server.
Default 1
Web UI Security->Trusted Certificates->Only Accept Trusted Certificates
Parameter
static.security.ca_cert
[3]
<y0000000000xx>.cfg
Description
It configures the type of certificates in the Trusted Certificates list for the IP phone to authenticate for TLS
connection.
Permitted
Values
0-Default Certificates
1-Custom Certificates
2-All Certificates
Default 2
Web UI Security->Trusted Certificates->CA Certificates
Parameter
static.security.cn_validation
[3]
<y0000000000xx>.cfg
Description
It enables or disables the IP phone to mandatorily validate the CommonName or SubjectAltName of the
certificate sent by the server.
Permitted
Values
0-Disabled
1-Enabled
Default 0
Web UI Security->Trusted Certificates->Common Name Validation
Parameter
static.security.dev_cert
[3]
<y0000000000xx>.cfg
Description It configures the type of the device certificates for the IP phone to send for TLS authentication.
Permitted
Values
0-Default Certificates
1-Custom Certificates
Default 0
Web UI Security->Server Certificates->Device Certificates
To Next Page
Loading...
