Home » Cisco Manuals » Telephony » Cisco 7920 » Manual Viewer

Cisco 7920 Administration Guide - Page 48

Encryption Methods, Wired Equivalent Privacy WEP and Temporal Key Integrity Protocol TKIP

UPC - 746320774732

Add to My Manuals
Save this manual to your list of manuals

Page 48 highlights

Components of the VoIP Wireless Network Chapter 2 An Overview of the Wireless Network Cisco LEAP is a proprietary authentication protocol that requires a LEAP-compliant RADIUS server. LEAP allows wireless devices to mutually authenticate by using a username and password through a centralized RADIUS server user database. When a Cisco Wireless IP Phone roams from one access point to another, the next access point requires LEAP authentication, also. The voice stream will not flow until the LEAP authentication is completed at the next access point through the centralized RADIUS server. To reduce the amount of delay between the access point and the RADIUS server, carefully plan where to locate the RADIUS server. A local RADIUS server introduces less delay during roaming than a remote RADIUS server. Small, remote offices can use a RADIUS server on the Cisco access point to authenticate up to 50 users. Authenticated Key Management The following authentication schemes use the RADIUS server to manage authentication keys: • WiFi Protected Access (WPA)-Uses information on a RADIUS server to derive unique pair-wise keys for authentication. Because these keys are generated at the centralized RADIUS server, WPA provides more security than WPA pre-shared keys that are stored on the access point and phone. • Cisco Centralized Key Management (CCKM)-Uses information on a RADIUS server and a wireless domain server (WDS) to manage and authenticate keys. The WDS creates a cache of security credentials for CCKM-enabled client devices for fast and secure reauthentication. With WPA and CCKM, encryption keys are not entered on the phone , but are automatically derived between the access point and phone. But the LEAP username and password that are used for authentication must be entered on each phone. Encryption Methods To ensure that voice traffic is secure, the Cisco Wireless IP Phone 7920 supports Wired Equivalent Privacy (WEP) and Temporal Key Integrity Protocol (TKIP) for encryption. When you use either mechanism for encryption, both the signaling (SCCP) packets and voice (RTP) packets are encrypted between the access point and the Cisco Wireless IP Phone. 2-14 Cisco Wireless IP Phone 7920 Administration Guide for Cisco CallManager Release 4.0 and 4.1 OL-7104-01

Section	Page
Cisco Wireless IP Phone 7920 Administration Guide for Cisco CallManager Release 4.0 and 4.1	1
Contents	5
Preface	13
Overview	13
Audience	13
Objectives	14
Organization	14
Related Documentation	15
Obtaining Documentation	16
Cisco.com	16
Documentation DVD	16
Ordering Documentation	17
Documentation Feedback	17
Cisco Product Security Overview	18
Reporting Security Problems in Cisco Products	18
Obtaining Technical Assistance	19
Cisco Technical Support Website	19
Submitting a Service Request	20
Definitions of Service Request Severity	21
Obtaining Additional Publications and Information	21
Document Conventions	22
An Overview of the Cisco Wireless IP Phone 7920	29
Understanding the Cisco Wireless IP Phone 7920	29
Features Supported on the Cisco Wireless IP Phone 7920	31
Configuring Telephony Features	32
Configuring Network Features for the Cisco Wireless IP Phone	33
Providing Users with Feature Information	34
An Overview of the Wireless Network	35
Understanding the Wireless LAN	35
The 802.11 Standards for Wireless LAN Communications	36
Connecting to the Wireless Network	37
Securing Voice Communications	38
Components of the VoIP Wireless Network	39
Networking Protocols Used with Cisco Wireless IP Phones	40
Interacting with the Cisco Aironet Access Point	42
Roaming in a Wireless Network	44
Voice Quality in a Wireless Network	46
Security Mechanisms in the Wireless Network	47
Encryption Methods	48
Choosing Authentication and Encryption Methods	49
Interacting with Cisco CallManager	51
Phone Configuration Files and Profile Files	51
Interacting with the DHCP Server	52
Wireless Network and Access Point Configuration	53
Understanding the Phone Startup Process	55
Setting Up Cisco Wireless IP Phones	61
Preparing to Install the Cisco Wireless IP Phone 7920	61
Network Requirements	62
Phone Configuration Tasks	62
Configuring IP Phones in Cisco CallManager	66
Adding Phones to the Cisco CallManager Database	67
Adding Phones with Auto-Registration	68
Using Auto-Registration Prior to Release 3.3(3)SR1	68
Adding Phones with Auto-Registration and TAPS	69
Adding Phones with BAT	70
Determining the MAC Address of a Cisco IP Phone	70
Adding Phones with Cisco CallManager Administration	71
Support for the Cisco 7920 Phone Type	71
Re-registering the Phone Using the Cisco 7920 Phone Type	72
Installing the Cisco Wireless IP Phone 7920	73
Safety and Performance Information	74
Providing Power to the Cisco IP Phone	77
Installing or Removing the Phone Battery	77
Charging the Battery	79
Using the Desktop Charger	81
Powering On the Wireless IP Phone 7920	83
Active and Standby Phone Modes	84
Startup Settings for a Network Without DHCP	85
Using the Cisco 7920 Configuration Utility	87
How to Install the Cisco 7920 Configuration Utility	87
System Requirements	88
Installing the Cisco 7920 Configuration Utility	89
Uninstalling the Cisco 7920 Configuration Utility	90
How to Use the Cisco 7920 Configuration Utility	90
Cisco 7920 Configuration Utility Overview	90
Connecting the Cisco 7920 Configuration Utility to a Phone	91
Activating the USB Port on the Phone	91
Connecting to the Cisco Wireless IP Phone	91
Overview of the Application Windows	92
Current Phone Settings Window	93
Connection Status Bar Information	94
Using the Configuration Utility Menus	95
Using the Connection Menu	96
Using the Configuration Wizard	100
Phone Profile Window	102
Task Buttons	102
Using the Phone Profile Window	104
Configuring a Network Profile	104
Configuring Phone Settings	111
Configuring User Profiles	115
Setting the Phone Lock Password	117
Configuring the Phone Book	119
Configuring Speed-Dial Hot Keys	120
Creating a Configuration Template	121
Log History Window	122
Troubleshooting the Network Connection for the Cisco 7920 Configuration Utility	123
Configuring Network Profiles on the Cisco Wireless IP Phone 7920	125
Accessing Network Profile Settings on the Phone	126
Displaying the Network Profile Menu	126
Configuring Network Profile Settings	127
Modifying DHCP Settings	128
Enabling or Disabling DHCP	129
Configuring Static Settings	130
Guidelines for Editing Settings in the Network Profile Menu	132
Configuring TFTP Option	133
Configuring Wireless Settings for the Profile	134
Displaying the 802.11b Configuration Menu	134
Wireless Settings Options in the 802.11b Configuration Menu	136
Choosing Authentication and Encryption Settings	137
Entering or Verifying Wireless Settings	138
Setting Up the Service Set Identifier (SSID)	138
Selecting the Authentication Type	139
Setting the Cisco Light Extensible Authentication Protocol (LEAP)	140
Selecting the Wireless Protected Access (WPA) Pre-Shared Key Type	143
Setting Up the Wired Equivalent Privacy (WEP) Keys	143
Applying Changes to Wireless Settings and Network Profiles	145
Changing the Profile Name	146
Verifying the Wireless Network Configuration on the Cisco Wireless IP Phone	147
Displaying the Network Configuration Menu	148
Verifying the Current Configuration Settings	149
Viewing the Current Configuration	151
Viewing the Media Access Control Address	151
Verifying Wireless Settings	152
Performing a Site Survey Verification	153
Site Survey Verification	154
Using the Cisco Wireless IP Phone 7920 Site Survey Utility	155
Requirements for an Optimal Wireless Voice Environment	156
Configuring Features, Templates, Services, and Users	159
Configuring Cisco Wireless IP Phones in Cisco CallManager	160
Product Specific Configuration Options	160
Access to Phone Menu Options	160
Idle Phone Softkeys	161
Cisco CallManager Softkeys	161
Setting Up the Idle URL for a Cisco Wireless IP Phone 7920	161
Configuring Telephony Features	161
Configuring Softkey Templates	166
Setting Up IP Phone Services	168
Configuring Corporate and Personal Directories	170
Configuring Corporate Directories	170
Configuring Personal Directory	171
Adding Users to Cisco CallManager	171
Creating Custom Phone Rings	172
Downloading Loud Ring Tones	172
Viewing Status, Statistics, and Firmware Information on the Cisco Wireless IP Phone 7920	175
Viewing the Current Configuration	175
Viewing Network Statistics	176
Viewing Firmware Versions	177
Viewing the Hardware Information	178
Troubleshooting the Cisco Wireless IP Phone 7920	181
Resolving Startup and Connectivity Problems	182
Symptom: The Cisco Wireless IP Phone Does Not Complete the Normal Start Up Process	182
Symptom: The Cisco Wireless IP Phone Does Not Associate with a Cisco Aironet Access Point	183
Verifying Access Point Settings	183
Symptom: The Cisco Wireless IP Phone Does Not Register with Cisco CallManager	185
Registering the Phone with Cisco CallManager	185
Checking Network Connectivity	186
Verifying TFTP Server Settings	186
Verifying IP Addressing	187
Verifying DNS Settings	188
Verifying Cisco CallManager Settings	188
Cisco CallManager and TFTP Services Are Not Running	189
Creating a New Configuration File	190
Resolving Voice Quality and Roaming Problems	191
Symptom: Cisco Wireless IP Phone Resets Unexpectedly	191
Verifying Access Point Settings	191
Identifying Intermittent Network Outages	192
Verifying DHCP Settings	192
Verifying Voice VLAN Configuration	192
Verifying that the Phones Have Not Been Intentionally Reset	193
Eliminating DNS or Other Connectivity Errors	193
Symptom: The Cisco Wireless IP Phone Has Audio Problems	194
No Audio During a Connected Call	194
One-Way Audio During a Connected Call	194
Symptom: The Cisco Wireless IP Phone Does Not Roam Properly	195
Voice Quality Deteriorates While Roaming	196
Delays in Voice Conversation While Roaming	196
Phone Loses Connection with Cisco CallManager While Roaming	196
General Troubleshooting Information	197
Troubleshooting Tips for the Cisco Wireless IP Phone 7920	197
Logging Information for Troubleshooting	200
Using a System Log Server	200
Using the Trace Route Option on the Cisco Wireless IP Phone	200
Administration Options on the Phone Menus	201
Accessing Hidden Options on the Phone Menus	201
Using Hidden Options on the Phone Menus	202
Erasing the Local Configuration	202
Using Power Save Mode	203
Setting the Softkey Option	203
Performing a Trace Route	204
Selecting the Data Rate	205
Selecting the Transmit Power	206
Changing the Cisco Discovery Protocol Settings	207
Cisco 7920 Configuration Utility Troubleshooting Tips	208
Troubleshooting Information for Basic Problems	208
Windows User Interface Operation Errors	209
TCP Connection Errors	209
File Format or File Access Errors	210
TFTP or Network Errors	211
Security Errors	212
Where to Go for More Troubleshooting Information	212
Providing Information to Users By Using a Website	215
How Wireless IP Phones Operate	215
How Users Get Copies of Cisco IP Phone Manuals	217
How Users Configure Phone Features and Services	217
How Users Access Voice Messages	218
Supporting International Users	221
Physical and Operating Environment Specifications	223

Match case Limit results 1 per page

Chapter 2

An Overview of the Wireless Network

Components of the VoIP Wireless Network

2-14

Cisco Wireless IP Phone 7920 Administration Guide for Cisco CallManager Release 4.0 and 4.1

OL-7104-01

Cisco

LEAP is a proprietary authentication protocol that requires a

LEAP-compliant RADIUS server. LEAP allows wireless devices to mutually

authenticate by using a username and password through a centralized

RADIUS server user database.

When a Cisco Wireless IP Phone roams from one access point to another, the

next access point requires LEAP authentication, also. The voice stream will

not flow until the LEAP authentication is completed at the next access point

through the centralized RADIUS server.

To reduce the amount of delay between the access point and the RADIUS

server, carefully plan where to locate the RADIUS server. A local RADIUS

server introduces less delay during roaming than a remote RADIUS server.

Small, remote offices can use a RADIUS server on the Cisco access point to

authenticate up to 50 users.

Authenticated Key Management

The following authentication schemes use the RADIUS server to manage

authentication keys:

•

WiFi Protected Access (WPA)

—

Uses information on a RADIUS server to

derive unique pair-wise keys for authentication. Because these keys are

generated at the centralized RADIUS server, WPA provides more security

than WPA pre-shared keys that are stored on the access point and phone.

•

Cisco Centralized Key Management (CCKM

)—

Uses information on a

RADIUS server and a wireless domain server (WDS) to manage and

authenticate keys. The WDS creates a cache of security credentials for

CCKM-enabled client devices for fast and secure reauthentication.

With WPA and CCKM, encryption keys are not entered on the phone , but are

automatically derived between the access point and phone. But the LEAP

username and password that are used for authentication must be entered on each

phone.

Encryption Methods

To ensure that voice traffic is secure, the Cisco Wireless IP Phone 7920 supports

Wired Equivalent Privacy (WEP) and Temporal Key Integrity Protocol (TKIP) for

encryption. When you use either mechanism for encryption, both the signaling

(SCCP) packets and voice (RTP) packets are encrypted between the access point

and the Cisco Wireless IP Phone.