Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
754
Views
0
Helpful
4
Replies

Encryption between 2 Ip Phone

ogor
Level 1
Level 1

‎02-06-2008 01:15 AM - edited ‎03-15-2019 08:38 AM

Hi,

Is it possible to encrypt communication throught 2 IP Phone interconnect with a CME ?

My IP Phones are 7906 and 7911.

Thanks in advance

Olivier

Labels:
0 Helpful
4 Replies 4

vmoopeung
Level 5
Level 5

‎02-12-2008 09:28 AM

CME 4.2 supports this feature.

device-security-mode

To set the security mode for SCCP signaling for devices communicating with the Cisco Unified CME router globally or per ephone, use the device-security-mode command in telephony-service or ephone configuration mode.

http://www.cisco.com/en/US/docs/voice_ip_comm/cucme/admin/configuration/guide/cmeauth.html

0 Helpful

ogor
Level 1
Level 1
In response to vmoopeung

‎02-15-2008 02:32 AM

I'm in CME 4.2 with 7942, 7911 and 7906 IP Phone and when I put the

ephone xxx

device-security-mode encrypted

command then the IP Phone could not register on the CME

=> Here is the message on the IP Phone " Registration Rejected : Max Phones ...3

and the one on the CME

Feb 15 19:31:09.091 UTC: %IPPHONE-6-REG_ALARM: 24: Name=SEP001EF7C2BC4D Load= SCCP42.8-3-2S Last=Phone-Reg-Rej

Feb 15 19:31:10.087 UTC: %IPPHONE-6-REG_ALARM: 22: Name=SEP001EF7C2BD1E Load= SCCP42.8-3-2S Last=Reset-Reset

when I remove the device-security-mode encrypted, the IP phone register immedialtly but without sRTP ?

any idea

thanks in advance for your help

Olivier

0 Helpful

MARTIN STREULE
Spotlight
Spotlight
In response to ogor

‎02-20-2008 03:45 PM

You have to do the steps mentioned in the doc in the other post. It's more then just enter the one command...

Phone Authentication

•Configuring the Cisco IOS Certification Authority (required)

•Authenticating Certificates for Server Functions (required)

•Configuring Telephony-Service Security Parameters (required)

•Configuring the CTL Client (required)

•Configuring the CAPF Server (required)

Media Encryption

•Configuring Secure Calls Between Cisco Unified CMEs Across an H.323 Trunk (required)

•Configuring Cisco Unified CME SRTP Fallback for H.323 Dial Peers (optional)

Good luck,

Martin

0 Helpful

adventurer
Level 1
Level 1
In response to ogor

‎02-02-2010 06:45 AM

Has anyone found the solution for this ? I'm looking at exactly the same error when "device-security-mode encrypted" in CME7.

Regards.

0 Helpful
Customers Also Viewed These Support Documents