Cisco CP-7961G Administration Guide - Page 193
Problem, Possible Cause, 1X Enabled on Phone but Not Authenticating, 1X Not Enabled
View all Cisco CP-7961G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 193 highlights
Chapter 9 Troubleshooting and Maintenance Troubleshooting Cisco Unified IP Phone Security Table 9-1 Cisco Unified IP Phone Security Troubleshooting (continued) Problem Possible Cause Phone does not register with Cisco Unified The CTL file does not contain the correct information for the Cisco Communications Manager. Unified Communications Manager server. Phone does not request signed configuration The CTL file does not contain any TFTP entries with certificates. files. 802.1X Enabled on Phone but Not Authenticating Phone cannot obtain a DHCP-assigned IP These errors typically indicate that 802.1X is enabled on the phone, but the address phone is unable to authenticate. Phone does not register with Cisco Unified 1. Verify that you have properly configured the required components Communications Manager Supporting 802.1X Authentication on Cisco Unified IP Phones, page 1-18. Phone status display as "Configuring IP" or 2. Confirm that the shared secret is configured on the phone (see Security "Registering" Configuration Menu, page 4-30 for more information). 802.1X Authentication Status displays as "Held" (see 802.1X Authentication and Status, page 4-43). Status menu displays 802.1x status as "Failed" (see Call Statistics Screen, page 7-13). - If the shared secret is configured, verify that you have the same shared secret entered on the authentication server. - If the shared secret is not configured, enter it, and ensure that it matches the one on the authentication server. 802.1X Not Enabled Phone cannot obtain a DHCP-assigned IP address Phone does not register with Cisco Unified Communications Manager These errors typically indicate that 802.1X is not enabled on the phone. To enable it, see Security Configuration Menu, page 4-30 for information on enabling 802.1X on the phone. Phone status display as "Configuring IP" or "Registering" 802.1X Authentication Status displays as "Disabled" (see 802.1X Authentication and Status, page 4-43). Status menu displays DHCP status as timing out (see Call Statistics Screen, page 7-13). Factory Reset Deleted 802.1X Shared Secret Phone cannot obtain a DHCP-assigned IP address Phone does not register with Cisco Unified Communications Manager Phone status display as "Configuring IP" or "Registering" Cannot access phone menus to verify 802.1X status These errors typically indicate that the phone has completed a factory reset while 802.1X was enabled. A factory reset deletes the shared secret, which is required for 802.1X authentication and network access. To resolve this, you have two options: • Temporarily disable 802.1X on the switch. • Temporarily move the phone to a network environment that is not using 802.1X authentication. Once the phone starts up normally in one of these conditions, you can access the 802.1X configuration menus and re-enter the shared secret. OL-21011-01 Cisco Unified IP Phone Administration Guide for Cisco Unified Communications Manager 8.0 (SCCP and SIP) 9-9