Specifications
A31003-D3000-P100-01-76A9, 10-2013
OpenStage and Desk Phone IP SIP V3, Security Checklist, Planning Guide 27
Phone Hardening Measures
Secure Interfaces and Services to the Phone
Related Topics
4.6.6 LDAP
To harden access to the LDAP server
• simple authentication should be used with a userid and password configured
in the phone
• encrypted LDAP using TLS should be used to prevent data exchanged during
an LDAP query being visible on the LAN.
Note that only encryption is used; authentication of the LDAP server is not
available in V3R3
Table: SIP Secure Signalling
If Bluetooth is enabled
then inform user to set
pairing mode to prompt
and to configure the pair-
ing PIN
Yes: No:
If Bluetooth is enabled
then inform user to set
Discoverable to NO
except when needed for
setup of pairing.
Yes: No:
Customer Comments and
Reasons. If some mea-
sures are not executed
then please explain here.
CL-Secure phone
access to LDAP Server
Measures • Configure simple authentication with userid and
password
• Configure TLS as transport protocol
References See Phone Administration Manual chapter on Corporate
Phonebook: Directory Settings -> LDAP
Can be done via
Needed Access Rights Administrator
Executed
Configure Simple Authen-
tication and set the LDAP
UserID and Password in
the phone
Yes: No:
CL-Bluetooth