Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Disable SSH in IP Phone and HTTP in CUE(module)

Hi we are using c2851(CME) with CUE version 8.6.4 and cp7965g ipphones(firmware 9.3.1). we are getting some vulnerability messages which i attached the report. so we have decided to disable http in Cue and ssh in IP phone. can you suggest how to disable the services. thanks

1 ACCEPTED SOLUTION

Accepted Solutions
Community Member

Disable SSH in IP Phone and HTTP in CUE(module)

For disabling the SSH to phone, you need to do the following.

telephony-service

service phone sshAccess 1

CUE supports both HTTP and HTTPS.

You need to do the following to enable HTTPS.

1.. In CUE config mode - "crypto key generate rsa label GUI modulus 1024"

2. reload

4. In CUE config mode - "web session security keyLabel GUI"

3. enable TLS 1.0 in IE and Firefox

4. In browser address bar enter:  https:// OR http://:443

4 REPLIES
Hall of Fame Super Gold

Disable SSH in IP Phone and HTTP in CUE(module)

In short, do not bother. Thjere is no vulnerability, and no issue. Espacially CUE is designed to work with HTTP all the time. Eg users accessing their setting or mailboxes over the web.

Community Member

Disable SSH in IP Phone and HTTP in CUE(module)

Hi Paolo,

            Thanks for your reply, Instead of http can i use the https service and how do you evaluate the ssh message? 

Hall of Fame Super Gold

Disable SSH in IP Phone and HTTP in CUE(module)

No, CUE supports HTTP only.

As mentioned above, you can ignore SSH in the phone.

Community Member

Disable SSH in IP Phone and HTTP in CUE(module)

For disabling the SSH to phone, you need to do the following.

telephony-service

service phone sshAccess 1

CUE supports both HTTP and HTTPS.

You need to do the following to enable HTTPS.

1.. In CUE config mode - "crypto key generate rsa label GUI modulus 1024"

2. reload

4. In CUE config mode - "web session security keyLabel GUI"

3. enable TLS 1.0 in IE and Firefox

4. In browser address bar enter:  https:// OR http://:443

211
Views
4
Helpful
4
Replies
CreatePlease to create content