Specifications
Administration
A31003-D3000-P100-01-76A9, 10-2013
32 OpenStage and Desk Phone IP SIP V3, Security Checklist, Planning Guide
Web Services
5.3 Web Services
Web services are provided on the phone to provide access to User and Admin
configuration menus for use by web-based clients.
Access is only available using HTTPS. Attempts to access using the standard
HTTP port are automatically redirected to HTTPS.
On delivery a default Web Server certificate is provided on the phone for this port.
This must be replaced with a customer generated certificate.
The WBM access uses the same User and Admin passwords to restrict access to
authorised users. Secure passwords must be set as in checklist chapters Harden
Local phone User Accessand Harden Local phone Admin Access.?
To prevent unauthorised access via WEB browser and to reduce the probability
of security vulnerabilities via the WEB browser, the WBM access should be
disabled if WBM is not used?
Table: Web Access
Related Topics
5.4 Monitoring via SNMP
The OpenStage and Desk Phone IP Phones use SNMP V1:
• to send traps to the SNMP Server for maintenance and QDC data
• for query of the phone MIB
CL- Web Access
Measures • Disable WBM access
• Install Customer generated Web Server Certificate
References See Phone Administration Manual chapter on Security
Access Control?
See DLS manual Configuration & Update Service (DLS) for
installing certificates
Can be done via
Needed Access Rights Administrator
Executed
Disable WBM access if
not needed
Yes No:
Install Web Server Certifi-
cate if Web Access is
used
Yes No:
Customer Comments and
Reasons