Cisco 7962G Administration Guide - Page 157
Troubleshooting Cisco Unified IP Phone Security
 |
UPC - 882658140341
View all Cisco 7962G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 157 highlights
Chapter 9 Troubleshooting and Maintenance Troubleshooting Cisco Unified IP Phone Security Troubleshooting Cisco Unified IP Phone Security Table 9-1 provides troubleshooting information for the security features on the Cisco Unified IP Phone. For information relating to the solutions for any of these issues, and for additional troubleshooting information about security and encryption, refer to Cisco Unified Communications Manager Security Guide. Table 9-1 Cisco Unified IP Phone Security Troubleshooting Problem Possible Cause Device authentication error. CTL file does not have a Cisco Unified Communications Manager certificate or has an incorrect certificate. Phone cannot authenticate CTL file. The security token that signed the updated CTL file does not exist in the CTL file on the phone. Phone cannot authenticate any of the Bad TFTP record. configuration files other than the CTL file. Phone reports TFTP authorization failure. • The TFTP address for the phone does not exist in the CTL file. • If you created a new CTL file with a new TFTP record, the existing CTL file on the phone may not contain a record for the new TFTP server. Phone does not register with Cisco Unified The CTL file does not contain the correct information for the Cisco Communications Manager. Unified Communications Manager server. Phone does not request signed configuration The CTL file does not contain any TFTP entries with certificates. files. 802.1X Enabled on Phone but Not Authenticating Phone cannot obtain a DHCP-assigned IP These errors typically indicate that 802.1X is enabled on the phone, but the address phone is unable to authenticate. Phone does not register with Cisco Unified Communications Manager Phone status display as "Configuring IP" or "Registering" 802.1X Authentication Status displays as "Held" (see the "802.1X Authentication and Status" section on page 4-29). 1. Verify that you have properly configured the required components "Supporting 802.1X Authentication on Cisco Unified IP Phones" section on page 1-15. 2. Confirm that the shared secret is configured on the phone (see the "Security Configuration Menu" section on page 4-21 for more information). - If the shared secret is configured, verify that you have the same shared secret entered on the authentication server. Status menu displays 802.1x status as "Failed" (see the "Call Statistics Screen" section on page 7-12). - If the shared secret is not configured, enter it, and ensure that it matches the one on the authentication server. 802.1X Not Enabled OL-14625-01 Cisco Unified IP Phone 7962G and 7942G Administration Guide for Cisco Unified Communications Manager 6.1 9-9
-
1 -
2
-
3
-
4
-
5
-
6
-
7
-
8
-
9
-
10
-
11
-
12
-
13
-
14
-
15
-
16
-
17
-
18
-
19
-
20
-
21
-
22
-
23
-
24
-
25
-
26
-
27
-
28
-
29
-
30
-
31
-
32
-
33
-
34
-
35
-
36
-
37
-
38
-
39
-
40
-
41
-
42
-
43
-
44
-
45
-
46
-
47
-
48
-
49
-
50
-
51
-
52
-
53
-
54
-
55
-
56
-
57
-
58
-
59
-
60
-
61
-
62
-
63
-
64
-
65
-
66
-
67
-
68
-
69
-
70
-
71
-
72
-
73
-
74
-
75
-
76
-
77
-
78
-
79
-
80
-
81
-
82
-
83
-
84
-
85
-
86
-
87
-
88
-
89
-
90
-
91
-
92
-
93
-
94
-
95
-
96
-
97
-
98
-
99
-
100
-
101
-
102
-
103
-
104
-
105
-
106
-
107
-
108
-
109
-
110
-
111
-
112
-
113
-
114
-
115
-
116
-
117
-
118
-
119
-
120
-
121
-
122
-
123
-
124
-
125
-
126
-
127
-
128
-
129
-
130
-
131
-
132
-
133
-
134
-
135
-
136
-
137
-
138
-
139
-
140
-
141
-
142
-
143
-
144
-
145
-
146
-
147
-
148
-
149
-
150
-
151
-
152 -
153 -
154 -
155 -
156 -
157 -
158 -
159 -
160 -
161 -
162 -
163
-
164
-
165
-
166
-
167
-
168
-
169
-
170
-
171
-
172
-
173
-
174
-
175
-
176
-
177
-
178
-
179
-
180
-
181
-
182
-
183
-
184
-
185
-
186
-
187
-
188
-
189
-
190
-
191
-
192
-
193
-
194
 |
 |
