Manualshelf

Specifications

ManualsBrandsUnify ManualsConsumer electronicsV3R3
21222324252627282930
A31003-D3000-P100-01-76A9, 10-2013
OpenStage and Desk Phone IP SIP V3, Security Checklist, Planning Guide 29
Phone Hardening Measures
XML Applications
Related Topics
4.8 XML Applications
An XML Application runs on a remote server and provides a mechanism for the
application to provide information and interact with the phone user using the
phone screen. This is done using two mechanisms:?
HTTP/HTTPS requests from the phone to the server with the response from
the server providing information to be displayed.
A PUSH mechanism where the XML Application pushes information onto the
display of the phone. ?
Where XML applications are used on the OpenStage / Desk Phone IP then the
setup of the XML application should be hardened by using HTTPS for the protocol
and using certificate checking at the phone for authenticcation of the XML appli-
cation server. To avoid DNS Spoofing the XML servers should be configured
using IP addresses instead of host names.?
The Push mechanism can be mis-used, For a PUSH command to be accepted by
the phone the XML Application has to be configured in the phone. To prevent
unauthorised PUSH commands, if an XML application is not used on a phone
then remove all configuration for that XML application to prevent unauthorised
use and access to the phone.
Load RADIUS server CA
certificate onto the phone
Yes: No:
Load RADIUS server CA
certificate onto the phone
Yes: No:
Set MSCHAP-Identity and
Password for PEAP mod
Yes: No:
Customer Comments and
Reasons
CL- Enable 802.1x