Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
789
Views
4
Helpful
4
Replies

Disable SSH in IP Phone and HTTP in CUE(module)

Go to solution
sasikumarnaren84
Level 1
Level 1

‎07-29-2013 11:23 PM - edited ‎03-16-2019 06:36 PM

Hi we are using c2851(CME) with CUE version 8.6.4 and cp7965g ipphones(firmware 9.3.1). we are getting some vulnerability messages which i attached the report. so we have decided to disable http in Cue and ssh in IP phone. can you suggest how to disable the services. thanks

Labels:
Preview file
24 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
rohitgu2
Level 1
Level 1

‎07-31-2013 12:48 AM

For disabling the SSH to phone, you need to do the following.

telephony-service

service phone sshAccess 1

CUE supports both HTTP and HTTPS.

You need to do the following to enable HTTPS.

1.. In CUE config mode - "crypto key generate rsa label GUI modulus 1024"

2. reload

4. In CUE config mode - "web session security keyLabel GUI"

3. enable TLS 1.0 in IE and Firefox

4. In browser address bar enter:  https:// OR http://:443

View solution in original post

0 Helpful
4 Replies 4

Go to solution
paolo bevilacqua
Hall of Fame
Hall of Fame

‎07-29-2013 11:27 PM

In short, do not bother. Thjere is no vulnerability, and no issue. Espacially CUE is designed to work with HTTP all the time. Eg users accessing their setting or mailboxes over the web.

0 Helpful

Go to solution
sasikumarnaren84
Level 1
Level 1
In response to paolo bevilacqua

‎07-30-2013 12:05 AM

Hi Paolo,

            Thanks for your reply, Instead of http can i use the https service and how do you evaluate the ssh message? 

0 Helpful

Go to solution
paolo bevilacqua
Hall of Fame
Hall of Fame
In response to sasikumarnaren84

‎07-30-2013 12:12 AM

No, CUE supports HTTP only.

As mentioned above, you can ignore SSH in the phone.

Go to solution
rohitgu2
Level 1
Level 1

‎07-31-2013 12:48 AM

For disabling the SSH to phone, you need to do the following.

telephony-service

service phone sshAccess 1

CUE supports both HTTP and HTTPS.

You need to do the following to enable HTTPS.

1.. In CUE config mode - "crypto key generate rsa label GUI modulus 1024"

2. reload

4. In CUE config mode - "web session security keyLabel GUI"

3. enable TLS 1.0 in IE and Firefox

4. In browser address bar enter:  https:// OR http://:443

0 Helpful
Customers Also Viewed These Support Documents