Security Configuration Menu


The Security Configuration that you access directly from the Settings menu provides information about various security settings. This menu also provides access to the Trust List menu. The Trust List menu indicates if the CTL file or the ITL file is installed on the phone.


The following table describes the options in this menu.


Note The phone also has a Security Configuration menu that you access from the Device menu. For information about the security options on that menu, see Security Configuration Menu.


Option

Description

To Change


Web Access Enabled 

 

Indicates whether web access is enabled (Yes) or disabled (No) for the phone.

 

For more information, see Control Web Page Access.

 


Security Mode


Displays the security mode that is set for the phone.

 


From Cisco Unified Communications Manager Administration, choose
Device > Phone > Phone Configuration

.


MIC


Indicates whether a manufacturing installed certificate used for the security features is installed on the phone (Yes) or is not installed on the phone (No).


For information about how to manage the MIC for your phone, see
Using the Certificate Authority Proxy Functionchapter in Cisco Unified Communications Manager Security Guide.
                        


LSC


Indicates whether a locally significant certificate used for the security features is installed on the phone (Yes) or is not installed on the phone (No).


For information about how to manage the LSC for your phone, see
Using the Certificate Authority Proxy Functionchapter in Cisco Unified Communications Manager Security Guide.


CTL File


Displays the MD5 hash of the certificate trust list (CTL) file that is installed in the phone, and provides access to the CTL File submenu. If no CTL file is installed on the phone, this field displays No. If security is configured for the phone, the CTL file installs automatically when the phone reboots or resets.


For more information about this file, see
Configuring the Cisco CTL Clientchapter in Cisco Unified Communications Manager Security Guide.) If a CTL file is installed on the phone, also provides access to the CTL File screen. For more information, see 
CTL File Submenu.

 


Trust List

 

The Trust List is a top-level menu that provides submenus for the CTL, ITL, and Signed Configuration files. The CTL File submenu displays the contents of the CTL file. The ITL File submenu displays contents of the ITL file. The CTL File and ITL File submenus also display the MD5 hash of the file. The MD5 hash value from the phone can be compared with the MD5 hash value of the file from the TFTP server to verify if the correct file is installed on the phone. The Signed Configuration File submenu displays the SRST certificate that is installed via the authenticated digitally signed configuration file.

 

 

For more information, see Trust List Menu.


VPN Configuration

 

Allows you to configure VPN configuration for this phone. Supported only for the Cisco Unified IP Phone 7942G, 7945G, and 7962G.

 

For more information, see the Cisco Unified Communications Manager Security Guide,Virtual Private Network Configurationchapter.


802.1X Authentication

 

Allows you to enable 802.1X authentication for this phone.

 

 

See 802.1X Authentication and Status.


802.1X Authentication Status


Displays real-time status progress of the
802.1X authentication transaction.


Display only
Cannot configure.