Cisco 7965G, CP-7965G, 7945G Administration Manual

Download

Page 1

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco

Unified

Communications Manager 6.0

Americas Headquarters

Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000

800 553-NETS (6387)

Fax: 408 527-0883

Text Part Number: OL-12650-01

Page 2

THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.

THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.

The following information is for FCC compliance of Class A devices: This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to part 15 of the FCC rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment. This equipment generates, uses, and can radiate radio-frequency energy and, if not installed and used in accordance with the instruction manual, may cause harmful interference to radio communications. Operation of this equipment in a residential area is likely to cause harmful interference, in which case users will be required to correct the interference at their own expense.

The following information is for FCC compliance of Class B devices: The equipment described in this manual generates and may radiate radio-frequency energy. If it is not installed in accordance with Cisco’s installation instructions, it may cause interference with radio and television reception. This equipment has been tested and found to comply with the limits for a Class B digital device in accordance with the specifications in part 15 of the FCC rules. These specifications are designed to provide reasonable protection against such interference in a residential installation. However, there is no guarantee that interference will not occur in a particular installation.

Modifying the equipment without Cisco’s written authorization may result in the equipment no longer complying with FCC requirements for Class A or Class B digital devices. In that event, your right to use the equipment may be limited by FCC regulations, and you may be required to correct any interference to radio or television communications at your own expense.

You can determine whether your equipment is causing interference by turning it off. If the interference stops, it was probably caused by the Cisco equipment or one of its peripheral devices. If the equipment causes interference to radio or television reception, try to correct the interference by using one or more of the following measures:

• Turn the television or radio antenna until the interference stops.

• Move the equipment to one side or the other of the television or radio.

• Move the equipment farther away from the television or radio.

• Plug the equipment into an outlet that is on a different circuit from the television or radio. (That is, make certain the equipment and the television or radio are on circuits controlled by different circuit breakers or fuses.)

Modifications to this product not authorized by Cisco Systems, Inc. could void the FCC approval and negate your authority to operate the product.

The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.

NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE.

IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

CCVP, the Cisco Logo, and the Cisco Square Bridge logo are trademarks of Cisco Systems, Inc.; Changing the Way We Work, Live, Play, and Learn is a service mark of Cisco Systems, Inc.; and Access Registrar, Aironet, BPX, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Enterprise/Solver, EtherChannel, EtherFast, EtherSwitch, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, IP/TV, iQ Expertise, the iQ logo, iQ Net Readiness Scorecard, iQuick Study, LightStream, Linksys, MeetingPlace, MGX, Networking Academy, Network Registrar, Packet, PIX, ProConnect, RateMUX, ScriptShare, SlideCast, SMARTnet, StackWise, The Fastest Way to Increase Your Internet Quotient, and TransPath are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.

All other trademarks mentioned in this document or Website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0704R)

IMPLIED, INCLUDING, WITHOUT

The Java logo is a trademark or registered trademark of Sun Microsystems, Inc. in the U.S. or other countries.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

Page 3

Page 4

Page 5

Preface xi

CONTENTS

CHAPTER

1 An Overview of the Cisco Unified IP Phone 1-1

Understanding the Cisco Unified IP Phone 7965G and 7945G 1-2

What Networking Protocols Are Used? 1-4

What Features are Supported on the Cisco Unified IP Phone 7965G and 7945G? 1-7

Feature Overview 1-8 Configuring Telephony Features 1-8 Configuring Network Parameters Using the Cisco Unified IP Phone 1-9 Providing Users with Feature Information 1-9

Understanding Security Features for Cisco Unified IP Phones 1-9

Overview of Supported Security Features 1-11 Understanding Security Profiles 1-14 Identifying Encrypted and Authenticated Phone Calls 1-14

Establishing and Identifying Secure Conference Calls 1-15 Call Security Interactions and Restrictions 1-15

Supporting 802.1X Authentication on Cisco Unified IP Phones 1-16

Overview 1-17 Required Network Components 1-17 Best Practices—Requirements and Recommendations 1-17

Security Restrictions 1-18

Overview of Configuring and Installing Cisco Unified IP Phones 1-18

Configuring Cisco Unified IP Phones in Cisco Unified Communications Manager 1-19

Checklist for Configuring the Cisco Unified IP Phone 7965G and 7945G in Cisco Unified Communications Manager 1-20

Installing Cisco Unified IP Phones 1-23

Checklist for Installing the Cisco Unified IP Phone 7965G and 7945G 1-23

CHAPTER

2 Preparing to Install the Cisco Unified IP Phone on Your Network 2-1

Understanding Interactions with Other Cisco Unified IP Communications Products 2-1

Understanding How the Cisco Unified IP Phone Interacts with Cisco Unified Communications Manager 2-2

Understanding How the Cisco Unified IP Phone Interacts with the VLAN 2-2

Providing Power to the Phone 2-3

Power Guidelines 2-4

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

Page 6

Contents

Phone Power Consumption and Display Brightness 2-4 Power Outage 2-5 Obtaining Additional Information about Power 2-5

Understanding Phone Configuration Files 2-5

Understanding the Phone Startup Process 2-7

Adding Phones to the Cisco Unified Communications Manager Database 2-9

Adding Phones with Auto-Registration 2-9 Adding Phones with Auto-Registration and TAPS 2-10 Adding Phones with Cisco Unified Communications Manager Administration 2-11 Adding Phones with BAT 2-11

Using Cisco Unified IP Phones with Different Protocols 2-12

Converting a New Phone from SCCP to SIP 2-12 Converting an In-Use Phone from SCCP to SIP 2-13 Converting an In-Use Phone from SIP to SCCP 2-13 Deploying a Phone in an SCCP and SIP Environment 2-13

CHAPTER

Determining the MAC Address of a Cisco Unified IP Phone 2-13

3 Setting Up the Cisco Unified IP Phone 3-1

Before You Begin 3-1

Network Requirements 3-2 Cisco Unified Communications Manager Configuration 3-2 Safety 3-2

Understanding the Cisco Unified IP Phone 7965G and 7945G Components 3-3

Network and Access Ports 3-4 Handset 3-4 Speakerphone 3-4 Headset 3-4

Audio Quality Subjective to the User 3-5 Connecting a Headset 3-5 Disabling a Headset 3-5 Using External Devices with Your Cisco Unified IP Phone 3-6

Installing the Cisco Unified IP Phone 3-6

Attaching the Cisco Unified IP Phone Expansion Module 7914 (SCCP Phones Only) 3-8

Adjusting the Placement of the Cisco Unified IP Phone 3-9

Adjusting Cisco Unified IP Phone Footstand and Phone Height 3-9 Securing the Phone with a Cable Lock 3-10 Mounting the Phone to the Wall 3-11

Verifying the Phone Startup Process 3-12

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

Page 7

Configuring Startup Network Settings 3-13

Configuring Security on the Cisco Unified IP Phone 3-13

Contents

CHAPTER

4 Configuring Settings on the Cisco Unified IP Phone 4-1

Configuration Menus on the Cisco Unified IP Phone 7965G and 7945G 4-1

Displaying a Configuration Menu 4-2 Unlocking and Locking Options 4-3 Editing Values 4-3

Overview of Options Configurable from a Phone 4-4

Network Configuration Menu 4-5

Device Configuration Menu 4-12

CallManager Configuration menu 4-12 SIP Configuration Menu (SIP Phones Only) 4-14

SIP General Configuration Menu 4-14

Line Settings Menu 4-16 Call Preferences Menu 4-17 HTTP Configuration Menu 4-18 Locale Configuration Menu 4-19

NTP Configuration Menu (SIP Phones Only) 4-19 UI Configuration Menu 4-20 Media Configuration Menu 4-22 Power Save Configuration Menu 4-25 Ethernet Configuration Menu 4-26 Security Configuration Menu 4-27 QoS Configuration Menu 4-28 Network Configuration 4-29

Security Configuration Menu 4-32

CTL File Menu 4-33 Trust List Menu 4-35

802.1X Authentication and Status 4-36

CHAPTER

5 Configuring Features, Templates, Services, and Users 5-1

Telephony Features Available for the Phone 5-2

Configuring Corporate and Personal Directories 5-16

Configuring Corporate Directories 5-17 Configuring Personal Directory 5-17

Modifying Phone Button Templates 5-17

Configuring Softkey Templates 5-18

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

vii

Page 8

Contents

Setting Up Services 5-18

Adding Users to Cisco Unified Communications Manager 5-19

Managing the User Options Web Pages 5-19

Giving Users Access to the User Options Web Pages 5-19 Specifying Options that Appear on the User Options Web Pages 5-20

CHAPTER

6 Customizing the Cisco Unified IP Phone 6-1

Customizing and Modifying Configuration Files 6-1

Creating Custom Phone Rings 6-2

Ringlist.xml File Format Requirements 6-2 PCM File Requirements for Custom Ring Types 6-3 Configuring a Custom Phone Ring 6-3

Creating Custom Background Images 6-4

List.xml File Format Requirements 6-4 PNG File Requirements for Custom Background Images 6-5 Configuring a Custom Background Image 6-5

Configuring Wideband Codec 6-6

Configuring the Idle Display 6-7

Automatically Disabling the Cisco Unified IP Phone Screen 6-7

7 Viewing Model Information, Status, and Statistics on the Cisco Unified IP Phone 7-1

Model Information Screen 7-2

Status Menu 7-3

Status Messages Screen 7-3 Network Statistics Screen 7-11 Firmware Versions Screen 7-12 Expansion Module(s) Screen (SCCP Phones Only) 7-13 Call Statistics Screen 7-13

CHAPTER

8 Monitoring the Cisco Unified IP Phone Remotely 8-1

Accessing the Web Page for a Phone 8-2

Disabling and Enabling Web Page Access 8-3

Device Information 8-3

Network Configuration 8-5

Network Statistics 8-8

Device Logs 8-10

Streaming Statistics 8-11

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

viii

OL-12650-01

Page 9

Contents

CHAPTER

9 Troubleshooting and Maintenance 9-1

Resolving Startup Problems 9-2

Symptom: The Cisco Unified IP Phone Does Not Go Through its Normal Startup Process 9-2 Symptom: The Cisco Unified IP Phone Does Not Register with Cisco Unified Communications

Manager 9-3

Identifying Error Messages 9-3

Checking Network Connectivity 9-3

Verifying TFTP Server Settings 9-3

Verifying IP Addressing and Routing 9-4

Verifying DNS Settings 9-4

Verifying Cisco Unified Communications Manager Settings 9-4

Cisco Unified Communications Manager and TFTP Services Are Not Running 9-4

Creating a New Configuration File 9-5

Registering the Phone with Cisco Unified Communications Manager 9-6 Symptom: Cisco Unified IP Phone Unable to Obtain IP Address 9-6

Cisco Unified IP Phone Resets Unexpectedly 9-6

Verifying Physical Connection 9-7 Identifying Intermittent Network Outages 9-7 Verifying DHCP Settings 9-7 Checking Static IP Address Settings 9-7 Verifying Voice VLAN Configuration 9-7 Verifying that the Phones Have Not Been Intentionally Reset 9-8 Eliminating DNS or Other Connectivity Errors 9-8 Checking Power Connection 9-8

OL-12650-01

Troubleshooting Cisco Unified IP Phone Security 9-9

General Troubleshooting Tips 9-11

General Troubleshooting Tips for the Cisco Unified IP Phone Expansion Module 7914 (SCCP Phones Only) 9-15

Resetting or Restoring the Cisco Unified IP Phone 9-15

Performing a Basic Reset 9-15 Performing a Factory Reset 9-16

Using the Quality Report Tool 9-17

Monitoring the Voice Quality of Calls 9-17

Using Voice Quality Metrics 9-18 Troubleshooting Tips 9-19

Where to Go for More Troubleshooting Information 9-19

Cleaning the Cisco Unified IP Phone 9-20

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

Page 10

Contents

APPENDIX

A Providing Information to Users Via a Website A-1

How Users Obtain Support for the Cisco Unified IP Phone A-1

How Users Access the Online Help System on the Phone A-1

How Users Get Copies of Cisco Unified IP Phone Manuals A-2

Accessing Cisco 7900 Series Unified IP Phone eLearning Tutorials (SCCP Phones Only) A-2

How Users Subscribe to Services and Configure Phone Features A-3

How Users Access a Voice Messaging System A-3

How Users Configure Personal Directory Entries A-4

Installing and Configuring the Cisco Unified IP Phone Address Book Synchronizer A-4

B Feature Support by Protocol for the Cisco Unified IP Phone 7965G and 7945G B-1

C Supporting International Users C-1

Adding Language Overlays to Phone Buttons C-1

Installing the Cisco Unified Communications Manager Locale Installer C-1

D Technical Specifications D-1

NDEX

Physical and Operating Environment Specifications D-1

Cable Specifications D-2

Network and Access Port Pinouts D-2

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

Page 11

Overview

Preface

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0 provides the information you need to understand, install, configure, manage, and

troubleshoot the phones in the Cisco Unified IP Phone 7965G and 7945G on a Voice-over-IP (VoIP) network.

Because of the complexity of an IP telephony network, this guide does not provide complete and detailed information for procedures that you need to perform in Cisco network devices.

Unified Communications Manager or other

Audience

Network engineers, system administrators, or telecom engineers should review this guide to learn the steps required to properly set up the Cisco Unified IP Phone 7965G and 7945G on the network.

The tasks described are administration-level tasks and are not intended for end-users of the phones. Many of the tasks involve configuring network settings and affect the phone’s ability to function in the network.

Because of the close interaction between the Cisco Unified IP Phone and Cisco

Unified Communications Manager, many of the tasks in this manual require familiarity with

Cisco

Unified Communications Manager.

Organization

This manual is organized as follows:

Chapter 1, “An Overview of the Cisco Unified IP Phone”

Chapter 2, “Preparing to Install the Cisco Unified IP Phone on Your Network”

Provides a conceptual overview and description of the Cisco

Describes how the Cisco Unified IP Phone interacts with other key IP telephony components, and provides an overview of the tasks required prior to installation.

Unified IP Phone.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

Page 12

Preface

Chapter 3, “Setting Up the Cisco Unified IP Phone”

Chapter 4, “Configuring Settings on the Cisco Unified IP Phone”

Chapter 5, “Configuring Features, Templates, Services, and Users”

Chapter 6, “Customizing the Cisco Unified IP Phone”

Chapter 7, “Viewing Model Information, Status, and Statistics on the Cisco Unified IP Phone”

Chapter 8, “Monitoring the Cisco Unified IP Phone Remotely”

Chapter 9, “Troubleshooting and Maintenance” Provides tips for troubleshooting the

Appendix A, “Providing Information to Users Via a Website”

Appendix B, “Feature Support by Protocol for the Cisco Unified IP Phone 7965G and 7945G”

Appendix C, “Supporting International Users” Provides information about setting up phones in

Appendix D, “Technical Specifications” Provides technical specifications of the

Describes how to properly and safely install and configure the Cisco network.

Describes how to configure network settings, verify status, and make global changes to the Cisco

Unified IP Phone.

Provides an overview of procedures for configuring telephony features, configuring directories, configuring phone button and softkey templates, setting up services, and adding users to Cisco

Unified Communications Manager.

Explains how to customize phone ring sounds, background images, and the phone idle display at your site.

Explains how to view model information, status messages, network statistics, and firmware information from the

Describes the information that you can obtain from the phone’s web page to remotely monitor the operation of a phone and to assist with troubleshooting.

Cisco

Unified IP Phone.

Provides suggestions for setting up a website for providing users with important information about their Cisco

Provides information about feature support for the Cisco Unified IP Phone 7965G and 7945G using the SCCP or SIP protocol with Cisco Unified Communications Manager Release 6.0.

non-English environments.

Cisco

Unified IP Phones.

Unified IP Phone.

Unified IP Phone on your

Cisco Unified IP Phone.

Related Topics

• Understanding Interactions with Other Cisco Unified IP Communications Products, page 2-1

• Understanding the Phone Startup Process, page 2-7

• Network Configuration Menu, page 4-5

What Features are Supported on the Cisco Unified IP Phone 7965G and 7945G?

The Cisco Unified IP Phone functions much like a digital business phone, allowing you to place and receive telephone calls. In addition to traditional telephony features, the Cisco Unified IP Phone includes features that enable you to administer and monitor the phone as a network device.

This section includes the following topics:

• Feature Overview, page 1-8

• Configuring Telephony Features, page 1-8

• Configuring Network Parameters Using the Cisco Unified IP Phone, page 1-9

• Providing Users with Feature Information, page 1-9

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

1-7

Page 22

What Features are Supported on the Cisco Unified IP Phone 7965G and 7945G?

Feature Overview

Cisco Unified IP Phones provide traditional telephony functionality, such as call forwarding and transferring, redialing, speed dialing, conference calling, and voice messaging system access. Cisco

Unified IP phones also provide a variety of other features. For an overview of the telephony features that the Cisco

section on page 5-2.

As with other network devices, you must configure Cisco Unified IP Phones to prepare them to access Cisco

Unified Communications Manager and the rest of the IP network. By using DHCP, you have fewer settings to configure on a phone, but if your network requires it, you can manually configure an IP address, TFTP server, and subnet mask. For instructions on configuring the network settings on the Cisco

Unified IP Phones, see Chapter 4, “Configuring Settings on the Cisco Unified IP Phone.”

The Cisco Unified IP Phone can interact with other services and devices on your IP network to provide enhanced functionality. For example, you can integrate the Cisco Lightweight Directory Access Protocol 3 (LDAP3) standard directory to enable users to search for co-workers contact information directly from their IP phones. You can also use XML to enable users to access information such as weather, stocks, quote of the day, and other web-based information. For information about configuring such services, see the

page 5-17 and the “Setting Up Services” section on page 5-18.

Finally, because the Cisco Unified IP Phone is a network device, you can obtain detailed status information from it directly. This information can assist you with troubleshooting any problems users might encounter when using their IP phones. See

Statistics on the Cisco Unified IP Phone,” for more information.

Unified IP Phone supports, see the “Telephony Features Available for the Phone”

Chapter 1 An Overview of the Cisco Unified IP Phone

Unified IP Phones with the corporate

“Configuring Corporate Directories” section on

Chapter 7, “Viewing Model Information, Status, and

Related Topics

• Configuring Settings on the Cisco Unified IP Phone, page 4-1

• Configuring Features, Templates, Services, and Users, page 5-1

• Troubleshooting and Maintenance, page 9-1

Configuring Telephony Features

You can modify certain settings for the Cisco Unified IP Phone from the Cisco Unified Communications Manager Administration application. Use this web-based application to set up phone registration criteria and calling search spaces, to configure corporate directories and services, and to modify phone button templates, among other tasks. See the and Cisco Unified Communications Manager Administration Guide for additional information.

For more information about the Cisco Unified Communications Manager Administration application, refer to Cisco Unified

Unified

within the application for guidance.

You can access the complete Cisco Unified Communications Manager documentation suite at this location:

http://www.cisco.com/en/US/products/sw/voicesw/ps556/tsd_products_support_series_home.html

Related Topic

• Telephony Features Available for the Phone, page 5-2

Communications Manager System Guide. You can also use the context-sensitive help available

Communications Manager documentation, including Cisco

“Telephony Features Available for the Phone” section on page 5-2

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

1-8

OL-12650-01

Page 23

Chapter 1 An Overview of the Cisco Unified IP Phone

Understanding Security Features for Cisco Unified IP Phones

Configuring Network Parameters Using the Cisco Unified IP Phone

You can configure parameters such as DHCP, TFTP, and IP settings on the phone itself. You can also obtain statistics about a current call or firmware versions on the phone.

For more information about configuring features and viewing statistics from the phone, see Chapter 4,

“Configuring Settings on the Cisco Unified IP Phone,” and see Chapter 7, “Viewing Model Information, Status, and Statistics on the Cisco Unified IP Phone.”

Providing Users with Feature Information

If you are a system administrator, you are likely the primary source of information for Cisco Unified IP Phone users in your network or company. To ensure that you distribute the most current feature and procedural information, familiarize yourself with Cisco visit the Cisco

http://www.cisco.com/en/US/products/hw/phones/ps379/tsd_products_support_series_home.html

From this site, you can access various user guides, including wallet cards.

Unified IP Phone web site:

Unified IP Phone documentation. Make sure to

In addition to providing users with documentation, it is important to inform them about available Cisco

Unified IP Phone features—including features specific to your company or network—and about

how to access and customize those features, if appropriate.

For a summary of some of the key information that phone users need their system administrators to provide, see

Appendix A, “Providing Information to Users Via a Website.”

Understanding Security Features for Cisco Unified IP Phones

Implementing security in the Cisco Unified Communications Manager system prevents identity theft of the phone and Cisco call signaling and media stream tampering.

To alleviate these threats, the Cisco IP telephony network establishes and maintains authenticated and encrypted communication streams between a phone and the server, digitally signs files before they are transferred to a phone, and encrypts media streams and call signaling between Cisco

The Cisco Unified IP Phones Series use the Phone Security Profile, which defines whether the device is nonsecure, authenticated, or encrypted. For information on applying the security profile to the phone, refer to Cisco Unified Communications Manager Security Guide.

If you configure security-related settings in Cisco Unified Communications Manager Administration, the phone configuration file will contain sensitive information. To ensure the privacy of a configuration file, you must configure it for encryption. For detailed information, refer to the “Configuring Encrypted Phone Configuration Files” chapter in Cisco Unified Communications Manager Security Guide.

Table 1-2 shows where you can find additional information about security in this and other documents.

Unified Communications Manager server, prevents data tampering, and prevents

Unified IP phones.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

1-9

Page 24

Understanding Security Features for Cisco Unified IP Phones

Table 1-2 Cisco Unified IP Phone and Cisco Unified Communications Manager Security Topics

Topic Reference

Detailed explanation of security, including set up, configuration, and troubleshooting information for Cisco Unified Cisco Unified

Communications Manager and

IP Phones

Security features supported on the Cisco Unified IP Phone

Restrictions regarding security features

Viewing a security profile name See the “Understanding Security

Identifying phone calls for which security is implemented

TLS connection See the “What Networking Protocols

Security and the phone startup process See the “Understanding the Phone

Security and phone configuration files See the “Understanding Phone

Changing the TFTP Server 1 or TFTP Server 2 option on the phone when security is implemented

Understanding security icons in the Communications Manager Communications Manager 5 options in the Device Configuration Menu on the phone

Items on the Security Configuration menu that you access from the Device Configuration menu on the phone

Items on the Security Configuration menu that you access from the Settings menu on the phone

Unlocking the CTL file See the “CTL File Menu” section on

Disabling access to web pages for a phone

1 through

Chapter 1 An Overview of the Cisco Unified IP Phone

Refer to Cisco Unified Communications Manager Security Guide

See the “Overview of Supported

Security Features” section on page 1-11

See the “Security Restrictions” section

on page 1-18

Profiles” section on page 1-14

See the “Identifying Encrypted and

Authenticated Phone Calls” section on page 1-14

Are Used?” section on page 1-4

See the “Understanding Phone

Configuration Files” section on page 2-5

Startup Process” section on page 2-7

Configuration Files” section on page 2-5

See the Table 4-1“Network

Configuration Menu” section on page 4-5

See the “CallManager Configuration

menu” section on page 4-12

See the “Security Configuration

Menu” section on page 4-27

See the “Security Configuration

Menu” section on page 4-32

page 4-33

See the “Disabling and Enabling Web

Page Access” section on page 8-3

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

1-10

OL-12650-01

Page 25

Chapter 1 An Overview of the Cisco Unified IP Phone

Table 1-2 Cisco Unified IP Phone and Cisco Unified Communications Manager Security Topics

Topic Reference

Troubleshooting See the “Troubleshooting Cisco

Deleting the CTL file from the phone See the “Resetting or Restoring the

Resetting or restoring the phone See the “Resetting or Restoring the

802.1X Authentication for Cisco Unified IP Phones

Understanding Security Features for Cisco Unified IP Phones

Unified IP Phone Security” section on page 9-9

Refer to Cisco Unified

Communications Manager Security Guide, Troubleshooting chapter

Cisco Unified IP Phone” section on page 9-15

See these sections:

• “Supporting 802.1X

Authentication on Cisco Unified IP Phones” section on page 1-16

• “802.1X Authentication and

Status” section on page 4-36

• “Troubleshooting Cisco Unified

Overview of Supported Security Features

Table 1-3 provides an overview of the security features that the Cisco Unified IP Phone 7965G and

7945G supports. For more information about these features and about Cisco Unified Communications Manager and Cisco Security Guide.

For information about current security settings on a phone, look at the Security Configuration menus on the phone (choose Settings > Security Configuration and choose Settings > Device Configuration > Security Configuration). For more information, see

Unified IP Phone.”

Note Most security features are available only if a certificate trust list (CTL) is installed on the phone. For

more information about the CTL, refer to “Configuring the Cisco CTL Client” chapter in the Cisco Unified Communications Manager Security Guide.

Unified IP Phone security, refer to Cisco Unified Communications Manager

IP Phone Security” section on page 9-9

Chapter 4, “Configuring Settings on the Cisco

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

1-11

Page 26

Chapter 1 An Overview of the Cisco Unified IP Phone

Understanding Security Features for Cisco Unified IP Phones

Table 1-3 Overview of Security Features

Feature Description

Image authentication Signed binary files (with the extension .sgn) prevent tampering with

the firmware image before it is loaded on a phone. Tampering with the image causes a phone to fail the authentication process and reject the new image.

Customer-site certificate installation

Device authentication Occurs between the Cisco Unified Communications Manager server

File authentication Validates digitally-signed files that the phone downloads. The

Signaling Authentication Uses the TLS protocol to validate that no tampering has occurred to

Manufacturing installed certificate

Secure SRST reference

(SCCP pohones only)

Media encryption Uses SRTP to ensure that the media streams between supported

Signaling encryption Ensures that all SCCP signaling messages that are sent between the

Each Cisco Unified IP Phone requires a unique certificate for device authentication. Phones include a manufacturing installed certificate (MIC), but for additional security, you can specify in Cisco Unified

Communications Manager Administration that a certificate be installed by using the CAPF1. Alternatively, you can install an LSC from the Security Configuration menu on the phone. See the

“Configuring Security on the Cisco Unified IP Phone” section on page 3-13 for more information.

and the phone when each entity accepts the certificate of the other entity. Determines whether a secure connection between the phone and a Cisco

Unified Communications Manager should occur, and, if necessary, creates a secure signaling path between the entities using TLS protocol. Cisco

Unified Communications Manager does not register phones unless they can be authenticated by the Cisco

Unified Communications Manager.

phone validates the signature to make sure that file tampering did not occur after the file creation. Files that fail authentication are not written to Flash memory on the phone. The phone rejects such files without further processing.

signaling packets during transmission.

Each Cisco Unified IP Phone contains a unique manufacturing installed certificate (MIC), which is used for device authentication. The MIC is a permanent unique proof of identity for the phone, and allows Cisco

Unified Communications Manager to authenticate the

phone.

After you configure a SRST reference for security and then reset the dependent devices in Cisco

Unified Communications Manager Administration, the TFTP server adds the SRST certificate to the phone cnf.xml file and sends the file to the phone. A secure phone then uses a TLS connection to interact with the SRST-enabled router.

devices proves secure and that only the intended device receives and reads the data. Includes creating a media master key pair for the devices, delivering the keys to the devices, and securing the delivery of the keys while the keys are in transport.

device and the Cisco

Unified Communications Manager server are

encrypted.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

1-12

OL-12650-01

Page 27

Chapter 1 An Overview of the Cisco Unified IP Phone

Understanding Security Features for Cisco Unified IP Phones

Table 1-3 Overview of Security Features (continued)

Feature Description

CAPF (Certificate Authority Proxy Function)

Security profiles Defines whether the phone is nonsecure, authenticated, or

Encrypted configuration files Lets you ensure the privacy of phone configuration files.

Optional disabling of the web server functionality for a phone

Phone hardening Additional security options, which you control from

Implements parts of the certificate generation procedure that are too processing-intensive for the phone, and it interacts with the phone for key generation and certificate installation. The CAPF can be configured to request certificates from customer-specified certificate authorities on behalf of the phone, or it can be configured to generate certificates locally.

encrypted. See the

“Understanding Security Profiles” section on

page 1-14 for more information.

You can prevent access to a phone’s web page, which displays a variety of operational statistics for the phone.

Cisco

Unified Communications Manager Administration:

• Disabling PC port

• Disabling Gratuitous ARP (GARP)

• Disabling PC Voice VLAN access

• Disabling access to the Setting menus, or providing restricted

access that allows access to the User Preferences menu and saving volume changes only

• Disabling access to web pages for a phone.

Note You can view current settings for the PC Port Disabled,

GARP Enabled, and Voice VLAN enabled options by looking at the phone’s Security Configuration menu. For more information, see the

“Device Configuration Menu”

section on page 4-12.

802.1X Authentication The Cisco Unified IP Phone can use 802.1X authentication to request and gain access to the network. See the

“Supporting 802.1X Authentication on Cisco Unified IP Phones” section on page 1-16

for more information.

1. CAPF = Certificate Authority Proxy Function

Related Topics

• Understanding Security Profiles, page 1-14

• Identifying Encrypted and Authenticated Phone Calls, page 1-14

• Device Configuration Menu, page 4-12

• Supporting 802.1X Authentication on Cisco Unified IP Phones, page 1-16

• Security Restrictions, page 1-18

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

1-13

Page 28

Chapter 1 An Overview of the Cisco Unified IP Phone

Understanding Security Features for Cisco Unified IP Phones

Understanding Security Profiles

Cisco Unified IP Phones that support Cisco Unified Communications Manager 6.0 or later use a security profile, which defines whether the phone is nonsecure, authenticated, or encrypted. For information about configuring the security profile and applying the profile to the phone, refer to Cisco Unified Communications Manager Security Guide.

To view the security mode that is set for the phone, look at the Security Mode setting in the Security Configuration menu. For more information, see the

“Security Configuration Menu” section on

page 4-27.

Related Topics

• Identifying Encrypted and Authenticated Phone Calls, page 1-14

• Device Configuration Menu, page 4-12

• Security Restrictions, page 1-18

Identifying Encrypted and Authenticated Phone Calls

When security is implemented for a phone, you can identify authenticated or encrypted phone calls by icons on the screen on the phone.

In an authenticated call, all devices participating in the establishment of the call are authenticated by the

Unified Communications Manager. When a call in progress is authenticated, the call progress icon

Cisco to the right of the call duration timer in the phone screen changes to this icon:

In an encrypted call, all devices participating in the establishment of the call are authenticated by the

Unified Communications Manager. In addition, call signaling and media streams are encrypted.

Cisco An encrypted call offers the highest level of security, providing integrity and privacy to the call. When a call in progress is being encrypted, the call progress icon to the right of the call duration timer in the phone screen changes to this icon:

Note If the call is routed through non-IP call legs, for example, PSTN, the call may be nonsecure even though

it is encrypted within the IP network and has a lock icon associated with it.

Related Topic

• Understanding Security Features for Cisco Unified IP Phones, page 1-9

• Understanding Security Profiles, page 1-14

• Security Restrictions, page 1-18

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

1-14

OL-12650-01

Page 29

Chapter 1 An Overview of the Cisco Unified IP Phone

Establishing and Identifying Secure Conference Calls

You can initiate a secure conference call and monitor the security level of participants. A secure conference call is established using this process:

1. A user initiates the conference from a secure phone (encrypted or authenticated security mode).

2. Cisco Unified Communications Manager assigns a secure conference bridge to the call.

3. As participants are added, Cisco Unified Communications Manager verifies the security mode of

each phone (encrypted or authenticated) and maintains the secure level for the conference.

4. The phone displays the security level of the conference call. A secure conference displays

(encrypted) or (authenticated) icon to the right of “Conference” on the phone screen. If icon

displays, the conference is not secure.

Note There are interactions, restrictions, and limitations that affect the security level of the conference call

depending on the security mode of the participant’s phones and the availability of secure conference bridges. See Table 1-4 and Table 1-5 for information about these interactions.

Understanding Security Features for Cisco Unified IP Phones

Call Security Interactions and Restrictions

Cisco Unified Communications Manager checks the phone security status when conferences are established and changes the security indication for the conference or blocks the completion of the call to maintain integrity and also security in the system. call security levels when using Barge.

Table 1-4 Call Security Interactions When Using Barge

Initiator’s Phone Security Level

Feature Used

Call Security Level

Results of Action

Non-secure Barge Encrypted call Call barged and identified as non-secure

call

Secure (encrypted) Barge Authenticated

call

Secure

Barge Encrypted call Call barged and identified as

(authenticated)

Non-secure Barge Authenticated

call

Call barged and identified as authenticated call

authenticated call

Call barged and identified as non-secure call

Table 1-5 provides information about changes to conference security levels depending on the initiator’s

phone security level, the security levels of participants, and the availability of secure conference bridges.

Table 1-4 provides information about changes to

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

1-15

Page 30

Understanding Security Features for Cisco Unified IP Phones

Table 1-5 Security Restrictions with Conference Calls

Chapter 1 An Overview of the Cisco Unified IP Phone

Initiator’s Phone Security Level

Feature Used

Security Level of Participants

Non-secure Conference Encrypted or

authenticated

Secure (encrypted or authenticated)

Conference At least one member is

non-secure

Secure (encrypted) Conference All participants are

encrypted

Secure (authenticated)

Conference All participants are

encrypted or authenticated

Non-secure Conference Encrypted or

authenticated

Secure (encrypted or authenticated)

Conference Encrypted or

authenticated

Conference Member puts call on Hold

with MOH

Secure (encrypted) Join Encrypted or

authenticated

Non-secure cBarge All participants are

encrypted

Non-secure MeetMe Minimum security level is

encrypted

Secure (encrypted) MeetMe Minimum security level is

authenticated

Secure (encrypted) MeetMe Minimum security level is

non-secure

Results of Action

Non-secure conference bridge

Non-secure conference

Secure conference bridge

Non-secure conference

Secure conference bridge

Secure encrypted level conference

Secure conference bridge

Secure authenticated level conference

Only secure conference bridge is available and used

Non-secure conference

Only non-secure conference bridge is available and used

Non-secure conference

No music-on-hold is played

Conference remains secure

Secure conference bridge

Conference remains secure (encrypted or authenticated)

Secure conference bridge

Conference changes to non-secure

Initiator receives message “Does not meet Security Level”, call rejected.

Secure conference bridge

Conference accepts encrypted and authenticated calls

Only secure conference bridge available and used

Conference accepts all calls

Supporting 802.1X Authentication on Cisco Unified IP Phones

These sections provide information about 802.1X support on the Cisco Unified IP Phones:

• Overview, page 1-17

• Required Network Components, page 1-17

• Best Practices—Requirements and Recommendations, page 1-17

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

1-16

OL-12650-01

Page 31

Chapter 1 An Overview of the Cisco Unified IP Phone

Overview

Cisco Unified IP phones and Cisco Catalyst switches have traditionally used Cisco Discovery Protocol (CDP) to identify each other and to determine parameters such as VLAN allocation and inline power requirements. However, CDP is not used to identify any locally attached PCs. Therefore, Cisco Unified IP Phones provide an EAPOL pass-through mechanism, whereby a PC locally attached to the IP phone may pass through EAPOL messages to the 802.1X authenticator in the LAN switch. This capability prevents the IP phone from having to act as the authenticator, yet allows the LAN switch to authenticate a data end point prior to accessing the network.

In conjunction with the EAPOL pass-through mechanism, Cisco Unified IP Phones provide a proxy EAPOL-Logoff mechanism. If the locally attached PC is disconnected from the IP phone, the LAN switch would not see the physical link fail, because the link between the LAN switch and the IP phone is maintained. To avoid compromising network integrity, the IP phone sends an EAPOL-Logoff message to the switch on behalf of the downstream PC, which triggers the LAN switch to clear the authentication entry for the downstream PC.

The Cisco Unified IP phones contain an 802.1X supplicant in addition to the EAPOL pass-through mechanism. This supplicant allows network administrators to control the connectivity of IP phones to the LAN switch ports. The initial release of the IP phone 802.1X supplicant implements the EAP-MD5 option for 802.1X authentication.

Understanding Security Features for Cisco Unified IP Phones

Required Network Components

Support for 802.1X authentication on Cisco Unified IP Phones requires several components, including:

• Cisco Unified IP Phone—The phone acts as the 802.1X supplicant, which initiates the request to

access the network.

• Cisco Secure Access Control Server (ACS) (or other third-party authentication server)—The

authentication server and the phone must both be configured with a shared secret that is used to authenticate the phone.

• Cisco Catalyst Switch (or other third-party switch)—The switch must support 802.1X so it can act

as the authenticator and pass the messages between the phone and the authentication server. When the exchange is completed, the switch grants or denies the phone access to the network.

Best Practices—Requirements and Recommendations

• Enable 802.1X Authentication—If you want to use the 802.1X standard to authenticate Cisco

Unified IP Phones, make sure that you have properly configured the other components before enabling it on the phone. See the information.

• Configure PC Port—The 802.1X standard does not take into account the use of VLANs and thus

recommends that only a single device be authenticated to a specific switch port. However, some switches (including Cisco Catalyst switches) support multi-domain authentication. The switch configuration determines whether you can connect a PC to the phone PC port.

“802.1X Authentication and Status” section on page 4-36for more

–

Enabled—If you are using a switch that supports multi-domain authentication, you can enable the PC port and connect a PC to it. In this case, Cisco Unified IP Phones support proxy EAPOL-Logoff to monitor the authentication exchanges between the switch and the attached PC. For more information about IEEE 802.1X support on the Cisco Catalyst switches, refer to the Cisco Catalyst switch configuration guides at:

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

1-17

Page 32

Overview of Configuring and Installing Cisco Unified IP Phones

http://www.cisco.com/en/US/products/hw/switches/tsd_products_ support_category_home.html

–

Disabled—If the switch does not support multiple 802.1X-compliant devices on the same port, you should disable the PC Port when 802.1X authentication is enabled. See the

Configuration Menu” section on page 4-27 for more information. If you do not disable this port

and subsequently attempt to attach a PC to it, the switch will deny network access to the phone and the PC.

• Configure Voice VLAN—Because the 802.1X standard does not account for VLANs, you should

configure this setting based on the switch support.

–

Enabled—If you are using a switch that supports multi-domain authentication, you can continue to use the voice VLAN.

–

Disabled—If the switch does not support multi-domain authentication, disable the Voice VLAN and consider assigning the port to the native VLAN. See the

section on page 4-27 for more information.

• Enter MD5 Shared Secret—If you disable 802.1X authentication or perform a factory reset on the

phone, the previously configured MD5 shared secret is deleted. See the

Status” section on page 4-36 for more information.

Chapter 1 An Overview of the Cisco Unified IP Phone

“Security

“Security Configuration Menu”

“802.1X Authentication and

Security Restrictions

A user cannot barge into an encrypted call if the phone that is used to barge is not configured for encryption. When barge fails in this case, a reorder tone (fast busy tone) plays on the phone on which the user initiated the barge.

If the initiator phone is configured for encryption, the barge initiator can barge into an authenticated or nonsecure call from the encrypted phone. After the barge occurs, Cisco Manager classifies the call as nonsecure.

If the initiator phone is configured for encryption, the barge initiator can barge into an encrypted call, and the phone indicates that the call is encrypted.

A user can barge into an authenticated call, even if the phone that is used to barge is nonsecure. The authentication icon continues to appear on the authenticated devices in the call, even if the initiator phone does not support security.

Unified Communications

Overview of Configuring and Installing Cisco Unified IP Phones

When deploying a new IP telephony system, system administrators and network administrators must complete several initial configuration tasks to prepare the network for IP information and a checklist for setting up and configuring a complete Cisco IP telephony network, refer to the “System Configuration Overview” chapter in Cisco Unified Communications Manager System Guide.

telephony service. For

After you have set up the IP telephony system and configured system-wide features in Cisco Unified Communications Manager, you can add IP phones to the system.

The following topics provide an overview of procedures for adding Cisco Unified IP Phones to your network:

• Configuring Cisco Unified IP Phones in Cisco Unified Communications Manager, page 1-19

• Installing Cisco Unified IP Phones, page 1-23

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

1-18

OL-12650-01

Page 33

Chapter 1 An Overview of the Cisco Unified IP Phone

Overview of Configuring and Installing Cisco Unified IP Phones

Configuring Cisco Unified IP Phones in Cisco Unified Communications Manager

To add phones to the Cisco Unified Communications Manager database, you can use:

• Auto-registration

• Cisco Unified Communications Manager Administration

• Bulk Administration Tool (BAT)

• BAT and the Tool for Auto-Registered Phones Support (TAPS)

For more information about these choices, see the “Adding Phones to the Cisco

Unified Communications Manager Database” section on page 2-9.

For general information about configuring phones in Cisco Unified Communications Manager, refer to the “Cisco the “Cisco Unified IP Phone Configuration” chapter in Cisco Administration Guide.

Unified IP Phone” chapter in Cisco Unified Communications Manager System Guide and to

Unified Communications Manager

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

1-19

Page 34

Chapter 1 An Overview of the Cisco Unified IP Phone

Overview of Configuring and Installing Cisco Unified IP Phones

Checklist for Configuring the Cisco Unified IP Phone 7965G and 7945G in Cisco

Table 1-6 Checklist for Configuring the Cisco Unified IP Phone 7965G and 7945G in Cisco Unified Communications

Unified Communications Manager

Table 1-6 provides an overview and checklist of configuration tasks for the Cisco Unified IP Phone

7965G and 7945G in Cisco Unified Communications Manager Administration. The list presents a suggested order to guide you through the phone configuration process. Some tasks are optional, depending on your system and user needs. For detailed procedures and information, refer to the sources in the list.

Manager

Task Purpose For More Information

1. Gather the following information about the phone:

• Phone Model

• MAC address

• Physical location of the phone

• Name or user ID of phone user

• Device pool

• Partition, calling search space, and

location information

Provides list of configuration requirements for setting up phones.

Identifies preliminary configuration that you need to perform before configuring individual phones, such as phone button templates or softkey templates.

Refer to Cisco Unified

Communications Manager System Guide,

“Cisco Unified IP Phone” chapter.

See the “Telephony Features

Available for the Phone” section on page 5-2.

• Number of lines and associated

directory numbers (DNs) to assign to the phone

• Cisco Unified Communications

Manager user to associate with the phone

• Phone usage information that

affects phone button template, softkey template, phone features, IP Phone services, or phone applications

2. Customize phone button templates (if required).

Changes the number of line buttons, speed-dial buttons, Service URL buttons or adds a Privacy button to meet user needs.

Refer to Cisco Unified

Communications Manager Administration Guide, “Phone

Button Template Configuration” chapter.

See the“Modifying Phone

Button Templates” section on page 5-17.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

1-20

OL-12650-01

Page 35

Chapter 1 An Overview of the Cisco Unified IP Phone

Overview of Configuring and Installing Cisco Unified IP Phones

Table 1-6 Checklist for Configuring the Cisco Unified IP Phone 7965G and 7945G in Cisco Unified Communications

Manager (continued)

Task Purpose For More Information

3. Add and configure the phone by completing these required fields in the Phone Configuration window:

• Phone type

• Description (user name or ID)

• MAC address

• Device pool

• Partition

• Calling Search Space

• Button template

• Product Specific Configuration

• Softkey template (if customized)

4. Add and configure directory numbers (lines) on the phone by completing these required fields in the Directory Number Configuration window.

• Directory number(s)

• Partition

Adds the device with its default settings to the Cisco Unified Communications Manager database.

Adds primary and secondary directory numbers and features associated with directory numbers to the phone.

Refer to Cisco Unified

Communications Manager Administration Guide, “Cisco

Unified

IP Phone

Configuration” chapter.

For information about Product Specific Configuration fields, refer to “I” Button Help in the Phone Configuration window.

Refer to Cisco Unified

Communications Manager Administration Guide:

• “Directory Number

Configuration” chapter

• “Creating a Cisco Unity

Voice Mailbox” section.

• Multiple Calls and Call Waiting

• Call Forwarding and Pickup (if

used)

• Voice Messaging (if used)

5. Customize softkey templates. Adds, deletes, or changes

order of softkey features that display on the user’s phone to meet feature usage needs.

6. Configure speed-dial buttons and assign speed-dial numbers (optional).

Adds speed-dial buttons and numbers,

Note Users can change

speed-dial settings on their phones by using Cisco Unified

IP Phone

User Options.

See the “Telephony Features

Available for the Phone” section on page 5-2.

Refer to Cisco Unified

Communications Manager Administration Guide, “Softkey

Template Configuration” chapter.

See the “Configuring Softkey

Templates” section on page 5-18.

Refer to Cisco Unified

Communications Manager Administration Guide, “Cisco

Unified

IP Phone Configuration” chapter, “Configuring Speed-Dial Buttons” section.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

1-21

Page 36

Chapter 1 An Overview of the Cisco Unified IP Phone

Overview of Configuring and Installing Cisco Unified IP Phones

Table 1-6 Checklist for Configuring the Cisco Unified IP Phone 7965G and 7945G in Cisco Unified Communications

Manager (continued)

Task Purpose For More Information

7. Configure Cisco Unified IP Phone services and assign services (optional).

8. Assign services to phone buttons (optional).

9. Add user information by configuring required fields:

• Name (last)

• User ID

• Password (for User Options web

pages)

• PIN (for use with Extension

Mobility and Personal Directory)

10. Associate a user with a phone (optional).

Provides IP Phone services.

Note Users can add or

change services on their phones by using the Cisco Unified

IP Phone

User Options.

Provides single button access to an IP phone service or URL.

Adds user information to the global directory for Cisco Unified

Communications

Manager.

Provides users with control over their phone such as forwarding calls or adding speed-dial numbers or services.

Note Some phones,

such as those in conference rooms, do not have an associated user.

Refer to Cisco Unified

Communications Manager Administration Guide, “Cisco

Unified

IP Phone Services

Configuration” chapter.

See the “Setting Up Services”

section on page 5-18.

Refer to Cisco Unified

Communications Manager Administration Guide, “Cisco

Unified

IP Phone Configuration” chapter, “Adding a Cisco Unified

IP Phone Service to a Phone Button” section.

Refer to Cisco Unified

Communications Manager Administration Guide, “End

User Configuration” chapter.

See the “Adding Users to Cisco

Unified Communications Manager” section on page 5-19.

Refer to Cisco Unified

Communications Manager Administration Guide, “End

User Configuration” chapter, “Associating Devices to a User” section.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

1-22

OL-12650-01

Page 37

Chapter 1 An Overview of the Cisco Unified IP Phone

Installing Cisco Unified IP Phones

After you have added the phones to the Cisco Unified Communications Manager database, you can complete the phone installation. You (or the phone users) can install the phone at the users’s location. The Cisco for connecting the phone handset, cables, and other accessories.

Note Before you install a phone, even if it is new, upgrade the phone to the current firmware image. For

information about upgrading, refer to the Readme file for your phone, which is located at:

http://www.cisco.com/cgi-bin/tablebuild.pl/ip-7900ser

After the phone is connected to the network, the phone startup process begins and the phone registers with Cisco settings on the phone depending on whether you enable or disable DHCP service.

If you used auto-registration, you need to update the specific configuration information for the phone such as associating the phone with a user, changing the button table, or directory number.

Unified IP Phone Installation Guide that ships in the box with each phone provides directions

Unified Communications Manager. To finish installing the phone, configure the network

Overview of Configuring and Installing Cisco Unified IP Phones

Checklist for Installing the Cisco Unified IP Phone 7965G and 7945G

Table 1-7 provides an overview and checklist of installation tasks for the Cisco Unified IP Phone 7965G

and 7945G. The list presents a suggested order to guide you through the phone installation. Some tasks are optional, depending on your system and user needs. For detailed procedures and information, refer to the sources in the list.

Table 1-7 Checklist for Installing the Cisco Unified IP Phone 7965G and 7945G

Task Purpose For More Information

1. Choose the power source for the phone:

• Power over Ethernet (PoE)

• External power supply

2. Assemble the phone, adjust phone placement, and connect the network cable.

3. Add one or two Cisco Unified IP Phone Expansion Cisco

Module 7914 to a SCCP

Unified IP Phone (optional, and

not available for SIP).

Determines how the phone receives power.

Locates and installs the phone in the network.

Extends functionality to a Cisco Unified

IP Phone by adding 14 line appearances or speed dial numbers.

Note The Cisco Unified IP

Phone 7945G does not support the Cisco Unified IP Phone 7914 Expansion Module.

See the “Providing Power

to the Phone” section on page 2-3.

See the “Installing the

Cisco Unified IP Phone” section on page 3-6.

See the “Adjusting the

Placement of the Cisco Unified IP Phone” section on page 3-9.

See the “Attaching the

Cisco Unified IP Phone Expansion Module 7914 (SCCP Phones Only)” section on page 3-8.

Refer to Cisco Unified IP

Phone Expansion Module 7914 Phone Guide.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

1-23

Page 38

Chapter 1 An Overview of the Cisco Unified IP Phone

Overview of Configuring and Installing Cisco Unified IP Phones

Table 1-7 Checklist for Installing the Cisco Unified IP Phone 7965G and 7945G (continued)

Task Purpose For More Information

4. Monitor the phone startup process. Verifies that phone is

configured properly.

5. Configure these network settings on the phone by choosing Settings > Network Configuration.

To enable DHCP:

• Set DHCP Enabled to Yes

• To use an alternate TFTP server, set

Alternate TFTP Server to Yes Enter IP address for TFTP Server 1

To disable DHCP:

• Set DHCP Enabled to No

• Enter static IP address for phone

Using DHCP—The IP address is automatically assigned and the Cisco Unified

IP Phone is

directed to a TFTP Server.

Note Consult with the

network administrator if you need to assign an alternative TFTP server instead of using the TFTP server assigned by DHCP.

Without DHCP—You must configure the IP address,

• Enter subnet mask

• Enter default router IP addresses

• Enter domain name where phone

TFTP server, subnet mask, domain name, and default router locally on the phone.

resides

See the “Verifying the

Phone Startup Process” section on page 3-12.

See the “Configuring

Startup Network Settings” section on page 3-13.

See the “Network

Configuration Menu” section on page 4-5.

• Set Alternate TFTP Server to Yes

Enter IP address for TFTP Server 1

6. Set up security on the phone. Provides protection against

data tampering threats and identity theft of phones.

7. Make calls with the Cisco Unified IP Phone.

8. Provide information to end users about how to use their phones and how to configure their phone options.

Verifies that the phone and features work correctly.

Ensures that users have adequate information to successfully use their Cisco Unified

IP Phones.

See the “Configuring

Security on the Cisco Unified IP Phone” section on page 3-13.

Refer to Refer to Cisco

Unified IP Phone 7965G and 7945G for Cisco Unified Communications Manager 6.0 (SCCP and SIP).

See Appendix A,

“Providing Information to Users Via a Website.”

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

1-24

OL-12650-01

Page 39

CHAPTER

Preparing to Install the Cisco Unified IP Phone on Your Network

Cisco Unified IP Phones enable you to communicate using voice over a data network. To provide this capability, the IP Phones depend upon and interact with several other key Cisco network components, including Cisco TFTP servers, media resources, Cisco prestandard PoE, and so on.

This chapter focuses on the interactions between the Cisco Unified IP Phone 7965G and 7945G and Cisco

Unified Communications Manager, DNS and DHCP servers, TFTP servers, and switches. It also

describes options for powering phones.

For related information about voice and IP communications, refer to this URL:

http://www.cisco.com/en/US/partner/products/sw/voicesw/index.html

This chapter provides an overview of the interaction between the Cisco Unified IP Phone 7965G and 7945G and other key components of the Voice over IP (VoIP) network. It includes these topics:

Unified Communications Manager, DNS and DHCP servers,

IP Telephony and

• Understanding Interactions with Other Cisco Unified IP Communications Products, page 2-1

• Providing Power to the Phone, page 2-3

• Understanding Phone Configuration Files, page 2-5

• Understanding the Phone Startup Process, page 2-7

• Adding Phones to the Cisco Unified Communications Manager Database, page 2-9

• Using Cisco Unified IP Phones with Different Protocols, page 2-12

• Determining the MAC Address of a Cisco Unified IP Phone, page 2-13

Understanding Interactions with Other Cisco Unified

IP Communications Products

To function in the IP telephony network, the Cisco Unified IP Phone must be connected to a networking device, such as a Cisco Catalyst switch. You must also register the Cisco Cisco

Unified Communications Manager system before sending and receiving calls.

This section includes these topics:

• Understanding How the Cisco Unified IP Phone Interacts with Cisco Unified Communications

Manager, page 2-2

• Understanding How the Cisco Unified IP Phone Interacts with the VLAN, page 2-2

Unified IP Phone with a

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

2-1

Page 40

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Understanding Interactions with Other Cisco Unified IP Communications Products

Understanding How the Cisco Unified IP Phone Interacts with Cisco Unified

Communications Manager

Cisco Unified Communications Manager is an open and industry-standard call processing system. Cisco

Unified Communications Manager software sets up and tears down calls between phones, integrating traditional PBX functionality with the corporate IP network. Cisco Manager manages the components of the IP telephony system—the phones, the access gateways, and the resources necessary for such features as call conferencing and route planning. Cisco Communications Manager also provides:

• Firmware for phones

• Authentication and encryption (if configured for the telephony system)

• Configuration file and CTL file, via TFTP service

• Phone registration

• Call preservation, so that a media session continues if signaling is lost between the primary

Communications Manager and a phone)

For information about configuring Cisco Unified Communications Manager to work with the IP devices described in this chapter, refer to Cisco Unified

Unified Communications Manager System Guide, and to Cisco Unified Communications Manager Security Guide.

For an overview of security functionality for the Cisco Unified IP Phone, see the “Understanding

Security Features for Cisco Unified IP Phones” section on page 1-9.

Unified Communications

Unified

Communications Manager Administration Guide, Cisco

Note If the Cisco Unified IP Phone model that you want to configure does not appear in the Phone Type

drop-down list in Cisco install the latest support patch for your version of Cisco

http://www.cisco.com/kobayashi/sw-center/sw-voice.shtml

Related Topic

• Telephony Features Available for the Phone, page 5-2

Unified Communications Manager Administration, go to the following URL and

Unified Communications Manager:

Understanding How the Cisco Unified IP Phone Interacts with the VLAN

The Cisco Unified IP Phone 7965G and 7945G has an internal Ethernet switch, enabling forwarding of packets to the phone, and to the access port and the network port on the back of the phone.

If a computer is connected to the access port, the computer and the phone share the same physical link to the switch and share the same port on the switch. This shared physical link has the following implications for the VLAN configuration on the network:

• The current VLANs might be configured on an IP subnet basis. However, additional IP address

might not be available to assign the phone to the same subnet as other devices connect to the same port.

• Data traffic present on the data/native VLAN may reduce the quality of Voice-over-IP traffic.

• Network security may indicate a need to isolate the VLAN voice traffic from the VLAN data traffic.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

2-2

OL-12650-01

Page 41

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

You can resolve these issues by isolating the voice traffic onto a separate VLAN. The switch port that the phone is connected to would be configured to have separate VLANs for carrying:

• Voice traffic to and from the IP phone (auxiliary VLAN, on the Cisco Catalyst 6000 series, for

example)

• Data traffic to and from the PC connected to the switch through the access port of the IP phone

(native VLAN)

Isolating the phones on a separate, auxiliary VLAN improves the quality of the voice traffic and allows a large number of phones to be added to an existing network where there are not enough IP addresses for each phone.

For more information, refer to the documentation included with a Cisco switch. You can also access related documentation at this URL:

http://www.cisco.com/en/US/products/hw/switches/tsd_products_support_category_home.html

Related Topics

• Understanding the Phone Startup Process, page 2-7

• Network Configuration Menu, page 4-5

Providing Power to the Phone

The Cisco Unified IP Phone 7965G and 7945G can be powered with external power or with Power over Ethernet (PoE). External power is provided through a separate power supply. PoE is provided by a switch through the Ethernet cable attached to a phone.

Note When you install a phone that is powered with external power, connect the power supply to the phone

and to a power outlet before you connect the Ethernet cable to the phone. When you remove a phone that is powered with external power, disconnect the Ethernet cable from the phone before you disconnect the power supply.

The following sections provide more information about powering a phone:

• Power Guidelines, page 2-4

• Phone Power Consumption and Display Brightness, page 2-4

• Power Outage, page 2-5

• Obtaining Additional Information about Power, page 2-5

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

2-3

Page 42

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Providing Power to the Phone

Power Guidelines

Table 2-1 provides guidelines that apply to external power and to PoE power for the Cisco Unified IP

Phone 7965G and 7945G.

Table 2-1 Guidelines for Powering the Cisco Unified IP Phone 7965G and 7945G

Power Type Guidelines

External power— Provided through the CP-PWR-CUBE-3 external power supply

External power— Provided through the Cisco Unified IP Phone Power Injector

IEEE 802.3af PoE power—Provided by a switch through the Ethernet cable attached to the phone

• The Cisco Unified IP Phone Series use the CP-PWR-CUBE-3 power

supply.

The Cisco Unified IP Phone Power Injector may be used with any Cisco Unified IP Phone. Functioning as a midspan device, the injector delivers inline power to the attached phone. The Cisco Unified IP Phone Power Injector is connected between a switch port and the IP Phone, and supports a maximum cable length of 100m between the unpowered switch and the IP Phone.

• The Cisco Unified IP Phone 7965G and 7945G support IEEE 802.3af

Class 3 power on signal pairs and spare pairs.

• The Cisco Unified IP Phone 7965G and 7945G do not support Cisco

inline PoE.

• To ensure uninterruptible operation of the phone, make sure that the

switch has a backup power supply.

• Make sure that the CatOS or IOS version running on your switch

supports your intended phone deployment. Refer to the documentation for your switch for operating system version information.

Phone Power Consumption and Display Brightness

The power consumed by a phone depends on its power configuration. See Table 2-1 for a power configuration overview. See Table 2-2 for the maximum power consumed by a phone for each configuration option and the correlating phone screen brightness level.

Note Power consumption values shown in the table include power losses in the cable that connects the phone

to the switch.

Table 2-2 Power Consumption and Display Brightness for Power Configurations

Max. Power Consumed

Phone Model Power Configuration

Cisco Unified IP Phone 7965G and 7945G

IEEE 802.3af Class 3 power from a Cisco switch, with bidirectional power negotiation enabled

External power — Full

from a Switch

12 W Full

Phone Screen Brightness

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

2-4

OL-12650-01

Page 43

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Power Outage

Your accessibility to emergency service through the phone is dependent on the phone being powered. If there is an interruption in the power supply, Service and Emergency Calling Service dialing will not function until power is restored. In the case of a power failure or disruption, you may need to reset or reconfigure equipment before using the Service or Emergency Calling Service dialing.

Obtaining Additional Information about Power

For related information about power, refer to the documents shown in Table 2-3. These documents provide information about these topics:

• Cisco switches that work with the Cisco Unified IP Phone 7965G and 7945G

• The Cisco IOS releases that support bidirectional power negotiation

• Other requirements and restrictions regarding power

Table 2-3 Related Documentation for Power

Understanding Phone Configuration Files

Document Topics URL

Cisco Unified IP Phone Power Injector http://http://www.cisco.com/en/US/pr

oducts/ps6951/index.html

PoE Solutions http://www.cisco.com/en/US/netsol/

ns340/ns394/ns147/ns412/networking _solutions_package.html

Cisco Catalyst Switches http://www.cisco.com/univercd/cc/td/

doc/product/lan/index.htm

Integrated Service Routers http://www.cisco.com/en/US/products

/hw/routers/index.html

Cisco IOS Software http://www.cisco.com/en/US/products

/sw/iosswrel/products_ios_cisco_ios_ software_category_home.html

Understanding Phone Configuration Files

Configuration files for a phone are stored on the TFTP server and define parameters for connecting to Cisco Unified Unified configuration file automatically.

Configuration files also contain information about which image load the phone should be running. If this image load differs from the one that is currently loaded on a phone, the phone contacts the TFTP server to request the required load files. (These files are digitally signed to ensure the authenticity of the file source.)

In addition, if the device security mode in the configuration file is set to Authenticated and the CTL file on the phone has a valid certificate for Cisco a TLS connection to Cisco

Communications Manager. In general, any time you make a change in Cisco

Communications Manager that requires the phone to be reset, a change is made to the phone’s

Unified Communications Manager, the phone establishes

Unified Communications Manager. Otherwise, the phone establishes a TCP

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

2-5

Page 44

Understanding Phone Configuration Files

connection. For SIP phones, a TLS connection requires that the transport protocol in the phone configuration file be set to TLS, which corresponds to the transport type in the SIP Security Profile in Cisco Unified Communications Manager.

Note If the device security mode in the configuration file is set to Authenticated or Encrypted, but the phone

has not received a CTL file, the phone continuously tries to obtain a CTL file so that it can register securely.

A phone accesses a default configuration file named XmlDefault.cnf.xml from the TFTP server when these conditions exist:

• You have enabled auto-registration in Cisco Unified Communications Manager

• The phone has not been added to the Cisco Unified Communications Manager Database

• The phone is registering for the first time

If auto registration is not enabled and the phone has not been added to the Cisco Unified

Communications Manager Database, the phone registration request will be rejected. In this case,

the phone resets and attempts to register repeatedly.

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

If the phone has registered before, the phone accesses the configuration file named SEPmac_address.cnf.xml, where mac_address is the MAC address of the phone.

For SIP phones, the TFTP server generates these SIP configuration files:

• SIP IP Phone:

–

For unsigned and unencrypted files—SEP<mac>.cnf.xml

–

For signed files—SEP<mac>.cnf.xml.sgn

–

For signed and encrypted files—SEP<mac>.cnf.xml.enc.sgn

• Dial Plan—<dialplan>.xml

• Softkey Template—<softkey_template>.xml

The filenames are derived from the MAC Address and Description fields in the Phone Configuration window of Cisco Cisco

Unified Communications Manager database. The MAC address uniquely identifies the phone. For

Unified Communications Manager Administration and the devicename field in the

more information refer to Cisco Unified Communications Manager Administration Guide.

For more information about how the phone interacts with the TFTP server, refer to Cisco Unified Communications Manager System Guide, “Cisco TFTP” chapter.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

2-6

OL-12650-01

Page 45

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Understanding the Phone Startup Process

When connecting to the VoIP network, the Cisco Unified IP Phone 7965G and 7945G goes through a standard startup process, as described in not all of these process steps may occur on your Cisco Unified IP Phone.

Table 2-4 Cisco Unified IP Phone Startup Process

Process Step Description Related Topics

1. Obtaining Power from the Switch.

2. Loading the Stored Phone Image.

3. Configuring VLAN. If the Cisco Unified IP Phone 7965G and 7945G is

4. Obtaining an IP

Address.

5. Accessing a TFTP Server.

If a phone is not using external power, the switch provides in-line power through the Ethernet cable that is attached to the phone.

The Cisco Unified IP Phone 7965G and 7945G has non-volatile flash memory in which it stores firmware images and user-defined preferences. At startup, the phone runs a bootstrap loader that loads a phone image stored in flash memory. Using this image, the phone initializes its software and hardware.

connected to a Cisco switch, the switch next informs the phone of the voice VLAN defined on the switch port. The phone needs to know its VLAN membership before it can proceed with the Dynamic Host Configuration Protocol (DHCP) request for an IP address.

If the Cisco Unified IP Phone 7965G and 7945G is using DHCP to obtain an IP address, the phone queries the DHCP server to obtain one. If you are not using DHCP in your network, you must assign static IP addresses to each phone locally.

In addition to assigning an IP address, the DHCP server directs the Cisco Unified TFTP Server. If the phone has a statically-defined IP address, you must configure the TFTP server locally on the phone; the phone then contacts the TFTP server directly.

Note You can also assign an alternative TFTP

server to use instead of the one assigned by DHCP.

Table 2-4. Depending on your specific network configuration,

See the “Providing

Power to the Phone” section on page 2-3.

See the “Resolving

Startup Problems” section on page 9-2.

See the “Resolving

Startup Problems” section on page 9-2.

See the “Network

Configuration Menu” section on page 4-5.

See the “Resolving

Startup Problems” section on page 9-2.

See the “Network

Configuration Menu” section on page 4-5.

See the “Resolving

Startup Problems” section on page 9-2.

See the “Network

IP Phone to a

Configuration Menu” section on page 4-5.

See the “Resolving

Startup Problems” section on page 9-2.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

2-7

Page 46

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Understanding the Phone Startup Process

Table 2-4 Cisco Unified IP Phone Startup Process (continued)

Process Step Description Related Topics

6. Requesting the CTL file.

7. Requesting the Configuration File.

8. Contacting Cisco Unified Communications Manager.

The TFTP server stores the certificate trust list (CTL) file. This file contains a list of Cisco Unified

Communications Managers and TFTP servers that the phone is authorized to connect to. It also contains the certificates necessary for establishing a secure connection between the phone and Cisco Unified

Communications

Manager.

The TFTP server has configuration files, which define parameters for connecting to Cisco Unified

Communications Manager and other information for the phone.

The configuration file defines how the Cisco Unified Unified

IP Phone communicates with Cisco

Communications Manager and provides a phone with its load ID. After obtaining the file from the TFTP server, the phone attempts to make a connection to the highest priority Cisco Unified

Communications Manager on the list. If security is implemented, the phone makes a TLS connection. Otherwise, it makes a non-secure TCP connection.

If the phone was manually added to the database, Cisco Unified

Communications Manager identifies the phone. If the phone was not manually added to the database and auto-registration is enabled in Cisco Unified

Communications Manager, the phone attempts to auto-register itself in the Cisco Unified

Communications Manager database.

Refer to Cisco Unified

Communications Manager Security Guide, “Configuring the

Cisco CTL Client” chapter.

See the “Understanding

Phone Configuration Files” section on page 2-5.

See the “Resolving

Startup Problems” section on page 9-2.

See the “Resolving

Startup Problems” section on page 9-2.

Note Auto-registration is disabled when

security is enabled on Cisco

Unified

case, the phone must be manually added to

the Cisco Unified Communications

Manager database.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

2-8

Communications Manager. In this

OL-12650-01

Page 47

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Adding Phones to the Cisco Unified Communications Manager Database

Before installing the Cisco Unified IP phone, you must choose a method for adding phones to the

Unified Communications Manager database. These sections describe the methods:

Cisco

• Adding Phones with Auto-Registration, page 2-9

• Adding Phones with Auto-Registration and TAPS, page 2-10

• Adding Phones with Cisco Unified Communications Manager Administration, page 2-11

• Adding Phones with BAT, page 2-11

Table 2-5 provides an overview of these methods for adding phones to the

Cisco Unified Communications Manager database.

Table 2-5 Methods for Adding Phones to the Cisco Unified Communications Manager

Database

Requires MAC

Method

Auto-registration No • Provides no control over directory

Address?

Notes

number assignment to phone.

Auto-registration with TAPS

Using the Cisco Unified Communications Manager Administration

Using BAT Yes Can add groups of same model of phone.

No Requires auto-registration and the Bulk

Yes Requires phones to be added

Adding Phones with Auto-Registration

By enabling auto-registration before you begin installing phones, you can:

• Add phones without first gathering MAC addresses from the phones.

• Automatically add a Cisco Unified IP Phone to the Cisco Unified Communications Manager

database when you physically connect the phone to your IP telephony network. During auto-registration, Cisco directory number to the phone.

Unified Communications Manager assigns the next available sequential

• Not available when security or

encryption is enabled.

Administration Tool (BAT); updates the Cisco Unified Manager database with the MAC address and DNs for the device when user calls TAPS from the phone.

individually

Can schedule when phones are added to the Cisco Unified Communications Manager database.

Communications

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

2-9

Page 48

Adding Phones to the Cisco Unified Communications Manager Database

• Quickly enter phones into the Cisco Unified Communications Manager database and modify any

settings, such as the directory numbers, from Cisco

• Move auto-registered phones to new locations and assign them to different device pools without

affecting their directory numbers.

Note Cisco recommends you use auto-registration to add less than 100 phones to your network. To add more

than 100 phones to your network, use the Bulk Administration Tool (BAT). See the

with BAT” section on page 2-11.

Auto-registration is disabled by default. In some cases, you might not want to use auto-registration: for example, if you want to assign a specific directory number to the phone or if you plan to implement authentication or encryption, as described in Cisco Unified Communications Manager Security Guide. For information about enabling auto-registration, refer to “Enabling Auto-Registration” in the Cisco

Unified

Note When you configure the cluster for mixed mode through the Cisco CTL client, auto-registration is

Communications Manager Administration Guide.

automatically disabled. When you configure the cluster for non-secure mode through the Cisco CTL client, auto-registration is automatically enabled.

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Unified Communications Manager.

“Adding Phones

Related Topics

• Adding Phones with Auto-Registration and TAPS, page 2-10

• Adding Phones with Cisco Unified Communications Manager Administration, page 2-11

• Adding Phones with BAT, page 2-11

Adding Phones with Auto-Registration and TAPS

You can add phones with auto-registration and TAPS, the Tool for Auto-Registered Phones Support, without first gathering MAC addresses from phones.

TAPS works with the Bulk Administration Tool (BAT) to update a batch of phones that were already added to the Cisco to update MAC

Note Cisco recommends you use auto-registration and TAPS to add less than 100 phones to your network. To

add more than 100 phones to your network, use the Bulk Administration Tool (BAT). See the

Phones with BAT” section on page 2-11.

To implement TAPS, you or the end-user dial a TAPS directory number and follow voice prompts. When the process is complete, the phone will have downloaded its directory number and other settings, and the phone will be updated in Cisco address.

Auto-registration must be enabled in Cisco Unified Communications Manager Administration (System

> Cisco Unified Communications Manager) for TAPS to function.

Unified Communications Manager database with dummy MAC addresses. Use TAPS

addresses and download pre-defined configurations for phones.

Unified Communications Manager Administration with the correct MAC

“Adding

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

2-10

OL-12650-01

Page 49

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Adding Phones to the Cisco Unified Communications Manager Database

Note When you configure the cluster for mixed mode through the Cisco CTL client, auto-registration is

automatically disabled. When you configure the cluster for non-secure mode through the Cisco CTL client, auto-registration is automatically enabled.

Refer to Cisco Unified Communications Manager Bulk Administration Guide for detailed instructions

about BAT and about TAPS.

Related Topics

• Adding Phones with Auto-Registration, page 2-9

• Adding Phones with Cisco Unified Communications Manager Administration, page 2-11

• Adding Phones with BAT, page 2-11

Adding Phones with Cisco Unified Communications Manager Administration

You can add phones individually to the Cisco Unified Communications Manager database using Cisco

Unified Communications Manager Administration. To do so, you first need to obtain the MAC

address for each phone.

For information about determining a MAC address, see the “Determining the MAC Address of a Cisco

Unified IP Phone” section on page 2-13.

After you have collected MAC addresses, in Cisco Unified Communications Manager Administration, choose Device > Phone and click Add New to begin.

For complete instructions and conceptual information about Cisco Unified Communications Manager, refer to Cisco Unified Communications Manager System Guide.

Related Topics

• Adding Phones with Auto-Registration, page 2-9

• Adding Phones with Auto-Registration and TAPS, page 2-10

• Adding Phones with BAT, page 2-11

Adding Phones with BAT

The Cisco Bulk Administration Tool (BAT) enables you to perform batch operations, including registration, on multiple phones.

To add phones using BAT only (not in conjunction with TAPS), you first need to obtain the appropriate MAC address for each phone.

For information about determining a MAC address, see the “Determining the MAC Address of a Cisco

Unified IP Phone” section on page 2-13.

Communications Manager Administration Guide and to Cisco Unified

For detailed instructions about using BAT, refer to Cisco Unified Communications Manager Administration Guide and to Cisco Unified Communications Manager Bulk Administration Guide.

Related Topics

• Adding Phones with Auto-Registration, page 2-9

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

2-11

Page 50

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Using Cisco Unified IP Phones with Different Protocols

• Adding Phones with Auto-Registration and TAPS, page 2-10

• Adding Phones with Cisco Unified Communications Manager Administration, page 2-11

Using Cisco Unified IP Phones with Different Protocols

The Cisco Unified IP Phone can operate with SCCP (Skinny Client Control Protocol) or SIP (Session Initiation Protocol). You can convert a phone that is using one protocol for use with the other protocol.

This section includes these topics:

• Converting a New Phone from SCCP to SIP, page 2-12

• Converting an In-Use Phone from SCCP to SIP, page 2-13

• Converting an In-Use Phone from SIP to SCCP, page 2-13

• Deploying a Phone in an SCCP and SIP Environment, page 2-13

Converting a New Phone from SCCP to SIP

A new, unused phone is set for SCCP by default. To convert this phone to SIP, perform these steps:

Procedure

Step 1 Take one of these actions:

• To auto-register the phone, set the Auto Registration Phone Protocol parameter in Cisco Unified

Communications Manager Administration to SIP.

• To provision the phone using the Bulk Administration Tool (BAT), choose the appropriate phone

model and choose SIP from the BAT.

• To provision the phone manually, make the appropriate changes for SIP on the Phone Configuration

page in Cisco

Unified Communications Manager Administration.

Refer to Cisco Unified Communications Manager Administration Guide for detailed information about Cisco

Unified Communications Manager configuration. Refer to Cisco Unified Communications

Manager Bulk Administration Guide for detailed information about using the BAT.

Step 2 If you are not using DHCP in your network, configure the network parameters for the phone.

See the “Configuring Startup Network Settings” section on page 3-14.

Step 3 Power cycle the phone.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

2-12

OL-12650-01

Page 51

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Converting an In-Use Phone from SCCP to SIP

You can use the Bulk Administration Tool (BAT) to convert a phone that is in use in your network from SCCP to SIP. To access BAT from Cisco Unified Communications Manager Administration, choose Bulk Administration > Phones > Migrate Phones > SCCP to SIP. For detailed information, refer to Cisco Unified Communications Manager Bulk Administration Guide.

Converting an In-Use Phone from SIP to SCCP

To convert a phone that is in use in your network from SIP to SCCP, perform these steps. For more information, Cisco Unified

Procedure

Step 1 In Cisco Unified Communications Manager Administration, delete the existing SIP phone from the

Cisco

Unified Communications Manager database.

Step 2 In Cisco Unified Communications Manager Administration, create the phone as an SCCP phone.

Step 3 Power cycle the phone.

Communications Manager Administration Guide.

Determining the MAC Address of a Cisco Unified IP Phone

Deploying a Phone in an SCCP and SIP Environment

To deploy Cisco Unified IP Phones in an environment that includes SCCP and SIP and in which the Cisco

Unified Communications Manager Auto-Registration parameter is SCCP, perform these general

steps:

1. Set the Cisco Unified Communications Manager Auto Registration Protocol enterprise parameter to

SCCP.

To do so, from Cisco Unified Communications Manager Administration, choose System > Enterprise Parameters.

2. Install the phones.

3. Change the auto_registration_protocol parameter to SIP.

4. Auto-register the SIP phones.

Determining the MAC Address of a Cisco Unified IP Phone

Several of the procedures that are described in this manual require you to determine the MAC address of a Cisco Unified IP Phone. You can determine the MAC address for a phone in any of these ways:

• From the phone, choose Settings > Network Configuration and look at the MAC Address field.

• Look at the MAC label on the back of the phone.

• Display the web page for the phone and click the Device Information hyperlink.

For information about accessing the web page, see the “Accessing the Web Page for a Phone”

section on page 8-2.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

2-13

Page 52

Determining the MAC Address of a Cisco Unified IP Phone

Chapter 2 Preparing to Install the Cisco Unified IP Phone on Your Network

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

2-14

OL-12650-01

Page 53

CHAPTER

Setting Up the Cisco Unified IP Phone

This chapter includes the following topics, which help you install the Cisco Unified IP Phone 7965G and 7945G on an IP telephony network:

• Before You Begin, page 3-1

• Understanding the Cisco Unified IP Phone 7965G and 7945G Components, page 3-3

• Installing the Cisco Unified IP Phone, page 3-6

• Attaching the Cisco Unified IP Phone Expansion Module 7914 (SCCP Phones Only), page 3-8

• Adjusting the Placement of the Cisco Unified IP Phone, page 3-9

• Verifying the Phone Startup Process, page 3-12

• Configuring Startup Network Settings, page 3-13

• Configuring Security on the Cisco Unified IP Phone, page 3-13

Note Before you install a Cisco Unified IP phone, you must decide how to configure the phone in your

network. Then you can install the phone and verify its functionality. For more information, see

Chapter 2, “Preparing to Install the Cisco Unified IP Phone on Your Network.”

Before You Begin

Before installing the Cisco Unified IP Phone, review the requirements in these sections:

• Network Requirements, page 3-2

• Cisco Unified Communications Manager Configuration, page 3-2

• Safety, page 3-2

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

3-1

Page 54

Chapter 3 Setting Up the Cisco Unified IP Phone

Before You Begin

Network Requirements

For the Cisco Unified IP Phone 7965G and 7945G to successfully operate as a Cisco Unified IP Phone endpoint in your network, your network must meet these requirements:

• Working Voice over IP (VoIP) network:

–

VoIP configured on your Cisco routers and gateways

–

Cisco Unified Communications Manager Release 6.0 or higher installed in your network and configured to handle call processing

• IP network that supports DHCP or manual assignment of IP address, gateway, and subnet mask

Note The Cisco Unified IP Phone displays the date and time from Cisco Unified Communications Manager.

If the Cisco the phones will not display the correct local time.

Unified Communications Manager server is located in a different time zone than the phones,

Cisco Unified Communications Manager Configuration

Safety

The Cisco Unified IP Phone requires Cisco Unified Communications Manager to handle call processing. Refer to Cisco Unified context-sensitive help in the Cisco Cisco

Unified Communications Manager is set up properly to manage the phone and to properly route

and process calls.

If you plan to use auto-registration, verify that it is enabled and properly configured in Cisco

Unified Communications Manager before connecting any Cisco Unified IP Phone to the network.

For information about enabling and configuring auto-registration, refer to Cisco

Unified

Unified Communications Manager Database” section on page 2-9.

You must use Cisco Unified Communications Manager to configure and assign telephony features to the Cisco details.

In Cisco Unified Communications Manager, you can add users to the database and associate them with specific phones. In this way, users gain access to web pages that allow them to configure items such as call forwarding, speed dialing, and voice messaging system options. See the

Unified Communications Manager” section on page 5-19 for details.

Review the following warnings before installing the Cisco Unified IP Phone 7965G and 7945G. To see translations of these warnings, refer to the Regulatory Compliance and Safety Information for the Cisco

Unified IP Phone 7900 Series document that accompanied this device.

Communications Manager Administration Guide. Also, see the “Adding Phones to the Cisco

Unified IP Phones. See the “Telephony Features Available for the Phone” section on page 5-2 for

Communications Manager Administration Guide or to Unified Communications Manager application to ensure that

“Adding Users to Cisco

Warning

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

3-2

Read the installation instructions before you connect the system to its power source.

Only trained and qualified personnel should be allowed to install, replace, or service this equipment.

OL-12650-01

Page 55

Chapter 3 Setting Up the Cisco Unified IP Phone

Understanding the Cisco Unified IP Phone 7965G and 7945G Components

Warning

Caution Inline power circuits provide current over the cable. Use the Cisco provided cable or a minimum 24

Ultimate disposal of this product should be handled according to all national laws and regulations.

Do not work on the system or connect or disconnect cables during periods of lightning activity.

To avoid electric shock, do not connect safety extra low voltage (SELV) circuits to telephone network voltage (TNV) circuits. LAN ports contain SELV circuits, and WAN ports contain TNV circuits. Some LAN and WAN ports both use RJ-45 connectors. Use caution when connecting cables.

AWG communication cable.

The following warnings apply when you use an external power supply.

Caution Only use the proper Cisco approved external power supply. Reference the installation manual provided

with the phone.

Warning

This product relies on the building's installation for short-circuit (overcurrent) protection. Ensure that a fuse or circuit breaker no larger than 120 VAC, 15 A U.S. (240 VAC, 10 A international) is used on the phase conductors (all current-carrying conductors).

Warning

The device is designed to work with TN power systems.

The plug-socket combination must be accessible at all times because it serves as the main disconnecting device.

Understanding the Cisco Unified IP Phone 7965G and 7945G Components

The Cisco Unified IP Phone 7965G and 7945G includes these components on the phone or as accessories for the phone:

• Network and Access Ports, page 3-4

• Handset, page 3-4

• Speakerphone, page 3-4

• Headset, page 3-4

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

3-3

Page 56

Understanding the Cisco Unified IP Phone 7965G and 7945G Components

Network and Access Ports

The back of the Cisco Unified IP Phone includes these ports:

• Network port—Labeled 10/100/1000 SW on the Cisco Unified IP Phone 7965G and 7945G

• Access port—Labeled 10/100/1000 PC on the Cisco Unified IP Phone 7965G and 7945G

You can use either Category 3/5/5e/6 cabling for 10 Mbps connections, but you must use Category 5/5e/6 for 100 Mbps connections and Category 5e/6 for 1000 Mbps connections.

Use the SW network port to connect the phone to the network. You must use a straight-through cable on this port. The phone can also obtain inline power from a switch over this connection. See the

Power to the Phone” section on page 2-3 for details.

Use the PC access port to connect a network device, such as a computer, to the phone. You must use a straight-through cable on this port.

Handset

The wideband-capable handset is designed especially for use with a Cisco Unified IP Phone. It includes a light strip that indicates incoming calls and voice messages waiting.

To connect a handset to the Cisco Unified IP Phone, plug the cable into the handset and into the Handset port on the back of the phone.

Chapter 3 Setting Up the Cisco Unified IP Phone

“Providing

Speakerphone

Headset

By default, the wideband-capable speakerphone is enabled on Cisco Unified IP Phone 7965G and 7945G.

You can disable the speakerphone through the Cisco Unified Communications Manager Administration application. To do so, choose Device > Phone and locate the phone you want to modify. In the Phone Configuration web page for the phone, check the Disable Speakerphone check box.

Although Cisco Systems performs some internal testing of third-party headsets for use with the Cisco

Unified IP Phones, Cisco does not certify or support products from headset or handset vendors. Because of the inherent environmental and hardware inconsistencies in the locations where Cisco

Unified IP Phones are deployed, there is not a single “best” solution that is optimal for all environments. Cisco recommends that customers test the headsets that work best in their environment before deploying a large number of units in their network.

In some instances, the mechanics or electronics of various headsets can cause a remote party to hear a voice echo when speaking to a Cisco

Cisco Systems recommends the use of good quality headsets that are screened against unwanted radio frequency (RF) and audio frequency (AF) signals. Depending on the quality of headsets and their proximity to other devices, such as cell phones and two-way radios, some audio noise may still occur.

The primary reason that support of a headset would be inappropriate for an installation is the potential for an audible hum. This hum can either be heard by the remote party or by both the remote party and the Cisco

Unified IP Phone user. Some potential humming or buzzing sounds can be caused by a range

Unified IP Phone user.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

3-4

OL-12650-01

Page 57

Chapter 3 Setting Up the Cisco Unified IP Phone

of outside sources, for example, electric lights, being near electric motors, large PC monitors. In some cases, a hum experienced by a user may be reduced or eliminated by using a local power cube. See the

“Safety” section on page 3-2 for more information.

Note Cisco Unified IP Phone 7965G and 7945G support wideband headsets.

Audio Quality Subjective to the User

Beyond the physical, mechanical and technical performance, the audio portion of a headset must sound good to the user and the party on the far end. Sound is subjective and Cisco cannot guarantee the performance of any headsets or handsets, but some of the headsets and handsets on the sites listed below have been reported to perform well on Cisco

Nevertheless, it is ultimately still the responsibility of customers to test this equipment in their environments to determine suitable performance.

For information about headsets, refer to:

http://www.vxicorp.com/cisco

Understanding the Cisco Unified IP Phone 7965G and 7945G Components

Unified IP Phones.

http://www.plantronics.com

http://www.jabra.com

Connecting a Headset

To connect a headset to the Cisco Unified IP Phone, plug it into the Headset port on the back of the phone. Press the Headset button on the phone to place and answer calls using the headset.

You can use the headset with all of the features on the Cisco Unified IP Phone, including the Volume and Mute buttons. Use these buttons to adjust the ear piece volume and to mute the speech path from the headset microphone.

Disabling a Headset

You can disable the headset through the Cisco Unified Communications Manager Administration application. If you do so, you also will disable the speakerphone.

To disable the headset from Cisco Unified Communications Manager Administration, choose Device > Phone and locate the phone that you want to modify. In the Phone Configuration web page for the phone, check the Disable Speakerphone and Headset check box.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

3-5

Page 58

Installing the Cisco Unified IP Phone

Using External Devices with Your Cisco Unified IP Phone

The following information applies when you use external devices with the Cisco Unified IP Phone:

Cisco recommends the use of good quality external devices that are shielded (screened) against unwanted radio frequency (RF) and audio frequency (AF) signals.

Depending on the quality of these devices and their proximity to other devices such as mobile phones or two-way radios, some audio noise may still occur. In these cases, Cisco recommends that you take one or more of the following actions:

• Move the external device away from the source of the RF or AF signals.

• Route the external device cables away from the source of the RF or AF signals.

• Use shielded cables for the external device, or use cables with a better shield and connector.

• Shorten the length of the external device cable.

• Apply ferrites or other such devices on the cables for the external device.

Cisco cannot guarantee the performance of the system because Cisco has no control over the quality of external devices, cables, and connectors. The system will perform adequately when suitable devices are attached using good quality cables and connectors.

Chapter 3 Setting Up the Cisco Unified IP Phone

Caution In European Union countries, use only external headsets that are fully compliant with the EMC Directive

[89/336/EC].

Installing the Cisco Unified IP Phone

You must connect the Cisco Unified IP Phone to the network and to a power source before using it. See

Figure 3-1 for a graphical representation of the connections.

Note Before you install a phone, even if it is new, upgrade the phone to the current firmware image.

Before using external devices, read the “Using External Devices with Your Cisco Unified IP Phone”

section on page 3-6 for safety and performance information.

To install a Cisco Unified IP Phone, perform the following steps:

Procedure Notes Reference

1. Connect the handset to the

Handset port.

2. Connect a headset to the

Headset port.

3. Connect the power supply to

the Cisco DC Adapter port.

— —

Optional. You can add a headset later if you do not connect one

See the “Headset” section on

page 3-4 for supported headsets.

now.

Optional. See the “Providing Power to the

Phone” section on page 2-3.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

3-6

OL-12650-01

Page 59

Chapter 3 Setting Up the Cisco Unified IP Phone

Procedure Notes Reference

4. Connect a straight-through

Ethernet cable from the switch to the 10/100/1000 SW port.

5. Connect a straight-through

Ethernet cable from another network device, such as a desktop computer, to the 10/100/1000 PC port.

Each Cisco Unified IP Phone ships with one Ethernet cable in the box.

You can use either Category 3/5/5e/6 cabling for 10 Mbps connections, but you must use Category 5/5e/6 for 100 Mbps connections and Category 5e/6 for 1000 Mbps connections.

Optional. You can connect another network device later if you do not connect one now.

You can use either Category 3/5/5e/6 cabling for 10 Mbps connections, but you must use Category 5/5e/6 for 100 Mbps connections and Category 5e/6 for 1000 Mbps connections.

See the “Network and Access

Ports” section on page 3-4 for

guidelines.

See the “Network and Access

Ports” section on page 3-4 for

guidelines.

Installing the Cisco Unified IP Phone

Figure 3-1 Cisco Unified IP Phone 7965G and 7945G Rear Cable Connections

AUX

10/100/1000 SW 10/100/1000 PC

DC48V

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

130055

3-7

Page 60

Chapter 3 Setting Up the Cisco Unified IP Phone

Attaching the Cisco Unified IP Phone Expansion Module 7914 (SCCP Phones Only)

Cisco Unified IP Phone 7965G and 7945G Rear Cable Connections:

1 DC adapter port (DC48V) 5 Access port

2 Power supply with DC Connector 6 Handset port

3 Power cable with AC wall plug 7 Headset port

4 Network port

Related Topics

• Before You Begin, page 3-1

• Attaching the Cisco Unified IP Phone Expansion Module 7914 (SCCP Phones Only)

• Adjusting the Placement of the Cisco Unified IP Phone, page 3-9

• Configuring Startup Network Settings, page 3-13

Attaching the Cisco Unified IP Phone Expansion Module 7914 (SCCP Phones Only)

The Cisco Unified IP Phone Expansion Module 7914 can be attached to an SCCP Cisco Unified IP Phone 7965G to extend the number of line appearances or speed dial buttons. You can customize the button templates for the Cisco Unified IP Phone Expansion Module 7914 to determine the number of line appearances and speed dial buttons. See the “Modifying Phone Button Templates” section on

page 5-17 for details.

The Cisco Unified IP Phone Expansion Module 7914 is not compatible with the following:

• The Cisco Unified IP Phone Expansion Module 7914 is not compatible with SIP phones.

• The Cisco Unified IP Phone Expansion Module 7914 is not supported on the

Unified IP Phone 7945G.

Cisco

You can attach one or two Cisco Unified IP Phone Expansion Module 7914s to a Cisco Unified IP Phone 7965G:

• When you initially add the phone to Cisco Unified Communications Manager by selecting

14-Button Line Expansion Module in the Module 1 or Module 2 fields and selecting the

7914

appropriate expansion module firmware. See

• After the phone is configured in Cisco Unified Communications Manager.

To configure the Cisco Unified IP Phone Expansion Module 7914 on an SCCP Cisco Unified IP Phone, follow these steps:

Procedure

Step 6 in the following procedure.

Step 1 Log in to the Cisco Unified Communications Manager Administration.

The Cisco Unified Communications Manager Administration page appears.

Step 2 From the menu, choose Device > Phone.

The Find and List Phone page appears. You can search for one or more phones that you want to configure for the Cisco

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

3-8

Unified IP Phone Expansion Module 7914.

OL-12650-01

Page 61

Chapter 3 Setting Up the Cisco Unified IP Phone

Step 3 Select and enter your search criteria and click Find.

The Find and List Phone page reappears showing a list of the phones matching your search criteria.

Step 4 Click the IP Phone that you want to configure for the Cisco Unified IP Phone Expansion Module 7914.

The Phone Configuration page appears.

Step 5 Scroll to the Expansion Module Information section of the page.

Step 6 Add support for expansion modules:

• To add one expansion module, in the Module 1 field, select 7914 14-Button Line Expansion

Module.

• To add a second expansion module, in the Module 2 field, select 7914 14-Button Line Expansion

Module.

In the Expansion Module Information page, there are two fields for specifying the firmware load for Modules 1 and 2. You can leave these fields blank to use the default firmware load.

Step 7 Scroll to the top of the page and click Update.

A message appears asking you to reset the phone for the changes to take effect. Click OK.

Step 8 Click Reset for the changes to take effect.

Adjusting the Placement of the Cisco Unified IP Phone

Note Refer users to their Cisco Unified Communications Manager User Options web pages so that they can

configure speed dial buttons and program buttons to access phone services on the Cisco Phone Expansion Module 7914. See the

“How Users Subscribe to Services and Configure Phone

Features” section on page A-3 for more details.

Related Topics

• Before You Begin, page 3-1

• Adjusting the Placement of the Cisco Unified IP Phone, page 3-9

• Configuring Startup Network Settings, page 3-13

Adjusting the Placement of the Cisco Unified IP Phone

The Cisco Unified IP Phone includes an adjustable footstand. When placing the phone on a desktop surface, you can adjust the tilt height to several different angles in 7.5 degree increments from flat to 60 degrees. You can also mount the phone to the wall using the footstand or using the optional locking wall mount kit.

Adjusting Cisco Unified IP Phone Footstand and Phone Height

You can adjust the footstand adjustment plate on the Cisco Unified IP Phone to the height that provides optimum viewing of the phone screen. See

Figure 3-3 for more information.

Unified IP

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

3-9

Page 62

Adjusting the Placement of the Cisco Unified IP Phone

Procedure

Step 1 Push in the footstand adjustment button.

Step 2 Adjust the footstand to the desired height.

Securing the Phone with a Cable Lock

You can secure the Cisco Unified IP Phone 7965G and 7945G to a desktop using a laptop cable lock. The lock connects to the security slot on the back of the phone and the cable can be secured to a desktop.

The security slot can accommodate a lock up to 20 mm. Compatible laptop cable locks include the Kensington laptop cable lock and laptop cable locks from other manufacturers that can fit into the security slot on the back of the phone.

See Figure 3-2.

Chapter 3 Setting Up the Cisco Unified IP Phone

Figure 3-2 Connecting a Cable Lock to the Cisco Unified IP Phone 7965G and 7945G

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

3-10

OL-12650-01

Page 63

Chapter 3 Setting Up the Cisco Unified IP Phone

Mounting the Phone to the Wall

You can mount the Cisco Unified IP Phone on the wall using the footstand as a mounting bracket or you can use special brackets available in a Cisco ordered separately from the phones.) If you attach the phone to a wall using the standard footstand and not the wall mount kit, you need to supply the following tools and parts:

• Screwdriver

• Screws to secure the Cisco Unified IP phone to the wall

See Figure 3-3 for a graphical representation of the phone parts.

Before You Begin

To ensure that the handset attaches securely to a wall-mounted phone, remove the handset wall hook from the handset rest, rotate the hook 180 degrees, and reinsert the hook. Turning the hook exposes a lip on which the handset catches when the phone is vertical. For an illustrated procedure, refer to Installing the Wall Mount Kit for the Cisco Unified IP Phone.

To mount the phone on the wall using the standard footstand, follow these steps:

Adjusting the Placement of the Cisco Unified IP Phone

Unified IP Phone wall mount kit. (Wall mount kits must be

Caution Use care not to damage wires or pipes located inside the wall when securing screws to wall studs.

Procedure

Step 1 Push in the footstand adjustment button.

Step 2 Adjust the footstand so it is flat against the back of the phone.

Step 3 Insert two screws into a wall stud, matching them to the two screw holes on the back of the footstand.

The keyholes fit standard phone jack mounts.

Step 4 Hang the phone on the wall.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

3-11

Page 64

Verifying the Phone Startup Process

Figure 3-3 Parts Used in Wall Mounting the Cisco Unified IP Phone

Chapter 3 Setting Up the Cisco Unified IP Phone

1 Footstand adjustment button—Raises and lowers adjustment plate

2 Wall mounting screw holes

3 Adjustment plate—Raises and lowers phone vertically

Verifying the Phone Startup Process

After the Cisco Unified IP Phone has power connected to it, the phone begins its startup process by cycling through these steps.

1. These buttons flash on and off in sequence:

–

Headset. (Only if the handset is off-hook when the phone powers up. Hang up the handset within 3 seconds to have the phone launch its secondary load. To continue with the primary load, leave the handset off-hook.)

–

Mute.

–

Speaker.

2. Some or all of the line keys flash orange.

Caution If the line keys flash red in sequence after flashing yellow, do not power down the phone until the

sequence of red flashes completes. This sequence can take several minutes to complete.

3. Some or all of the line keys flash green.

Normally, this sequence takes just a few seconds. However, if the phone flash memory is erased or the phone load is corrupted, the sequence of green flashes will continue while the phone begins a software update procedure. If the phone performs this procedure, the following buttons light to indicate progress:

–

Headset—Phone is waiting for the network and completing CDP and DHCP configuration. (A DHCP server must be available in your network.)

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

3-12

OL-12650-01

Page 65

Chapter 3 Setting Up the Cisco Unified IP Phone

–

Mute—Phone is downloading images from the TFTP server.

–

Speaker—Phone is writing images to its flash memory.

4. The phone screen displays the Cisco Systems, Inc., logo screen.

5. These messages appear as the phone starts:

–

Verifying load (if the phone load does not match the load on the TFTP server). If this message appears, the phone start up again and repeats step 1 through step 4 above.

–

Configuring IP.

–

Updating CTL.

–

Updating Locale.

–

Configuring CM List.

–

Registering.

6. The main phone screen displays:

–

Current date and time

–

Primary directory number

–

Additional directory numbers and speed dial numbers, if configured

Configuring Startup Network Settings

–

Softkeys

If the phone successfully passes through these stages, it has started up properly. If the phone does not start up properly, see the

“Resolving Startup Problems” section on page 9-2.

Configuring Startup Network Settings

If you are not using DHCP in your network, you must configure these network settings on the Cisco

Unified IP Phone after installing the phone on the network:

• IP address

• IP subnet mask

• Default gateway IP address

• TFTP server IP address

You may also configure these optional settings as necessary:

• Domain name

• DNS server IP address

Collect this information and see the instructions in Chapter 4, “Configuring Settings on the Cisco

Unified IP Phone.”

Configuring Security on the Cisco Unified IP Phone

The security features protect against several threats, including threats to the identity of the phone and to data. These features establish and maintain authenticated communication streams between the phone and the Cisco

OL-12650-01

Unified Communications Manager server, and digitally sign files before they are delivered.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

3-13

Page 66

Configuring Security on the Cisco Unified IP Phone

For more information about the security features, see the “Understanding Security Features for Cisco

Unified IP Phones” section on page 1-9. Also, refer to Cisco Unified Communications Manager Security

Guide.

A Locally Significant Certificate (LSC) installs on phones after you perform the necessary tasks that are associated with the CAPF. You can use Cisco configure an LSC, as described in Cisco

Alternatively, you can initiate the installation of an LSC from the Security Configuration menu on the phone. This menu also lets you update or remove an LSC.

Before you begin, make sure that the appropriate Cisco Unified Communications Manager and the Certificate Authority Proxy Function (CAPF) security configurations are complete:

• The CTL file should have a CAPF certificate.

• The CAPF certificate must exist in the /usr/local/cm/.security/certs folder in every server in the

cluster.

• The CAPF is running and configured.

Refer to Cisco Unified Communications Manager Security Guide for more information.

To configure an LSC on the phone, perform the following procedure. Depending on how you have configured the CAPF, this procedure installs an LSC, updates an existing LSC, or removes an existing LSC.

Chapter 3 Setting Up the Cisco Unified IP Phone

Unified Communications Manager Administration to

Unified Communications Manager Security Guide.

Procedure

Step 1 Obtain the CAPF authentication code that was set when the CAPF was configured.

Step 2 From the phone, press the Settings > Security Configuration.

Note You can control access to the Settings Menu by using the Settings Access field in the

Cisco

Unified Communications Manager Administration Phone Configuration Settings page.

For more information, see Cisco Unified Communications Manager Administration Guide.

Step 3 Press **# to unlock settings on the Security Configuration menu. (See the “Unlocking and Locking

Options” section on page 4-3 for information using locking and unlocking options.)

Note If a Settings Menu password has been provisioned, SIP phones present an “Enter password” prompt after

you enter **#.

Step 4 Scroll to LSC and press the Update softkey.

The phone prompts for an authentication string.

Step 5 Enter the authentication code and press the Submit softkey.

The phone begins to install, update, or remove the LSC, depending on how the CAPF was configured. During the procedure, a series of messages appears in the LSC option field in the Security Configuration menu so that you can monitor progress. When the procedure completes successfully, the phone will display Installed or Not Installed.

The LSC install, update, or removal process can take a long time to complete. You can stop the process at any time by pressing the Stop softkey from the Security Configuration menu. (Settings must be unlocked before you can press this softkey.)

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

3-14

OL-12650-01

Page 67

Chapter 3 Setting Up the Cisco Unified IP Phone

When the phone successfully completes the installation procedure, it displays “Success.” If the phone displays, “Failure,” the authorization string may be incorrect or the phone may not enabled for upgrading. Refer to error messages generated by the CAPF and take appropriate actions.

You can verify that an LSC is installed on the phone by choosing Settings > Model Information and ensuring that the LSC setting shows Installed.

Related Topic

• Understanding Security Features for Cisco Unified IP Phones, page 1-9

Configuring Security on the Cisco Unified IP Phone

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

3-15

Page 68

Configuring Security on the Cisco Unified IP Phone

Chapter 3 Setting Up the Cisco Unified IP Phone

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

3-16

OL-12650-01

Page 69

CHAPTER

Configuring Settings on the Cisco Unified IP Phone

The Cisco Unified IP Phone includes many configurable network and device settings that you may need to modify before the phone is functional for your users. You can access these settings, and change many of them, through menus on the phone.

This chapter includes the following topics:

• Configuration Menus on the Cisco Unified IP Phone 7965G and 7945G, page 4-1

• Overview of Options Configurable from a Phone, page 4-4

• Network Configuration Menu, page 4-5

• Device Configuration Menu, page 4-12

• Security Configuration Menu, page 4-32

Configuration Menus on the Cisco Unified IP Phone 7965G and 7945G

The Cisco Unified IP Phone includes the following configuration menus:

• Network Configuration menu—Provides options for viewing and making a variety of network

settings. For more information, see the

• Device Configuration menu—Provides access to sub-menus from which you can view a variety of

non network-related settings. For more information, see the

on page 4-12.

• Security Configuration menu—Provides options for displaying and modifying security settings. For

more information, see the

Before you can change option settings on the Network Configuration menu, you must unlock options for editing. See the

For information about the keys you can use to edit or change option settings, see the “Editing Values”

section on page 4-3.

You can control whether a phone user has access to phone settings by using the Settings Access field in the Cisco

Cisco Unified

“Unlocking and Locking Options” section on page 4-3 for instructions.

Unified Communications Manager Administration Phone Configuration Settings page. See

Communications Manager Administration Guide for more information.

“Security Configuration Menu” section on page 4-32.

“Network Configuration Menu” section on page 4-5.

“Device Configuration Menu” section

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-1

Page 70

Configuration Menus on the Cisco Unified IP Phone 7965G and 7945G

Related Topics

• Displaying a Configuration Menu, page 4-2

• Unlocking and Locking Options, page 4-3

• Editing Values, page 4-3

• Overview of Options Configurable from a Phone, page 4-4

• Network Configuration Menu, page 4-5

• Device Configuration Menu, page 4-12

• Security Configuration Menu, page 4-32

Displaying a Configuration Menu

To display a configuration menu, perform the following steps.

Note You can control whether a phone has access to the Settings menu or to options on this menu by using

the Settings Access field in the Cisco Configuration page. The Settings Access field accepts these values:

• Enabled—Allows access to the Settings menu.

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Unified Communications Manager Administration Phone

• Disabled—Prevents access to the Settings menu.

• Restricted—Allows access to the User Preferences menu and allows volume changes to be saved.

Prevents access to other options on the Settings menu.

If you cannot access an option on the Settings menu, check the Settings Access field. For more information, see Cisco Unified

Communications Manager Administration Guide.

Procedure

Step 1 Press the Settings button to access the Settings menu.

Step 2 Perform one of these actions to display the desired menu:

• Use the Navigation button to select the desired menu and then press the Select softkey.

• Use the keypad on the phone to enter the number that corresponds to the menu.

Step 3 To display a submenu, repeat Step 2.

Step 4 To exit a menu, press the Exit softkey.

Related Topics

• Unlocking and Locking Options, page 4-3

• Editing Values, page 4-3

• Overview of Options Configurable from a Phone, page 4-4

• Network Configuration Menu, page 4-5

• Device Configuration Menu, page 4-12

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

4-2

OL-12650-01

Page 71

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

• Security Configuration Menu, page 4-32

Unlocking and Locking Options

Configuration options that can be changed from a phone are locked by default to prevent users from making changes that could affect the operation of a phone. You must unlock these options before you can change them.

When options are inaccessible for modification, a locked padlock icon appears on the configuration menus. When options are unlocked and accessible for modification, an unlocked padlock icon appears on these menus.

To unlock or lock options, press **#. This action either locks or unlocks the options, depending on the previous state.

Note If a Settings Menu password has been provisioned, SIP phones present an “Enter password” prompt after

you enter **#.

Make sure to lock options after you have made your changes.

Configuration Menus on the Cisco Unified IP Phone 7965G and 7945G

Caution Do not press **# to unlock options and then immediately press **# again to lock options. The phone

Editing Values

will interpret this sequence as **#**, which will reset the phone. To lock options after unlocking them, wait at least 10 seconds before you press **# again.

Related Topics

• Displaying a Configuration Menu, page 4-2

• Editing Values, page 4-3

• Overview of Options Configurable from a Phone, page 4-4

• Network Configuration Menu, page 4-5

• Device Configuration Menu, page 4-12

When you edit the value of an option setting, follow these guidelines:

• Use the keys on the keypad to enter numbers and letters.

• To enter letters using the keypad, use a corresponding number key. Press the key one or more times

to display a particular letter. For example, press the 2 key once for “a,” twice quickly for “b,” and three times quickly for “c.” After you pause, the cursor automatically advances to allow you to enter the next letter.

• To enter a period (for example, in an IP address), press the . (period) softkey or press * on the

keypad.

• Press the << softkey if you make a mistake. This softkey deletes the character to the left of the

cursor.

• Press the Cancel softkey before pressing the Save softkey to discard any changes that you have

made.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-3

Page 72

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Overview of Options Configurable from a Phone

Note The Cisco Unified IP Phone provides several methods you can use to reset or restore option settings, if

necessary. For more information, see the

“Resetting or Restoring the Cisco Unified IP Phone” section

on page 9-15.

Related Topics

• Displaying a Configuration Menu, page 4-2

• Unlocking and Locking Options, page 4-3

• Overview of Options Configurable from a Phone, page 4-4

• Network Configuration Menu, page 4-5

• Device Configuration Menu, page 4-12

• Security Configuration Menu, page 4-32

Overview of Options Configurable from a Phone

The settings that you can change on a phone fall into several categories, as shown in Table 4-1. For a detailed explanation of each setting and instructions for changing them, see the “Network Configuration

Menu” section on page 4-5.

Note There are several options on various configuration menus that are for display only or that you can

configure from Cisco

Unified Communications Manager. These options also are also described in this

chapter.

Table 4-1 Settings Configurable from the Phone

Category Description

DHCP settings Dynamic Host Configuration Protocol (DHCP)

automatically assigns IP address to devices when you connect them to the network. Cisco Unified

IP Phones enable DHCP by default.

IP settings If you do not use DHCP in your network, you

can make IP settings manually.

TFTP settings If you do not use DHCP to direct the phone to a

TFTP server, you must manually assign a TFTP server. You can also assign an alternative TFTP server to use instead of the one assigned by DHCP.

Network Configuration Menu Option

DHCP Enabled

DHCP Address Released

Domain Name

IP Address

Subnet Mask

Default Router 1-5

DNS Server 1-5

TFTP Server 1

Alternate TFTP

TFTP Server 2

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

4-4

OL-12650-01

Page 73

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Table 4-1 Settings Configurable from the Phone (continued)

Category Description

VLAN settings • Admin. VLAN ID allows you to change the

administrative VLAN used by the phone.

• PC VLAN allows PCs plugged in behind

the phone to interoperate with third-party switches that do not strip VLAN tags on the native VLAN for that port.

Port settings Allow you to set the speed and duplex of the

network and access ports.

Related Topics

• Displaying a Configuration Menu, page 4-2

• Unlocking and Locking Options, page 4-3

• Editing Values, page 4-3

Network Configuration Menu

Network Configuration Menu Option

Admin. VLAN ID

PC VLAN

SW Port Configuration

PC Port Configuration

• Network Configuration Menu, page 4-5

• Device Configuration Menu, page 4-12

Network Configuration Menu

The Network Configuration menu provides options for viewing and making a variety of network settings.

For information about how to access the Network Configuration menu, see the “Displaying a

Configuration Menu” section on page 4-2.

Note The phone also has a Network Configuration menu that you access directly from the Settings menu. For

information about the options on that menu, see the “Network Configuration” section on page 4-29.

Before you can change an option on this menu, you must unlock options as described in the “Unlocking

and Locking Options” section on page 4-3. The Edit, Yes, or No softkeys for changing network

configuration options appear only if options are unlocked.

For information about the keys you can use to edit options, see the “Editing Values” section on page 4-3.

Table 4-2 Network Configuration Menu Options

Option Description To Change

DHCP Server IP address of the Dynamic Host

Configuration Protocol (DHCP) server from which the phone obtains its IP address.

BOOTP Server Indicates whether the phone obtains its

configuration from a Bootstrap Protocol (BootP) server instead of from a DHCP server.

Table 4-2 describes these options and, where applicable, explains how to change them.

Display only—Cannot configure.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-5

Page 74

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Network Configuration Menu

Table 4-2 Network Configuration Menu Options (continued)

Option Description To Change

MAC Address Unique Media Access Control (MAC)

address of the phone.

Host Name Unique host name that the DHCP server

assigned to the phone.

Domain Name Name of the Domain Name System (DNS)

domain in which the phone resides.

IP Address Internet Protocol (IP) address of the phone.

If you assign an IP address with this option, you must also assign a subnet mask and default router. See the Subnet Mask and Default Router options in this table.

Subnet Mask Subnet mask used by the phone. 1. Unlock network configuration

Display only—Cannot configure.

1. Unlock network configuration

options.

2. Set the DHCP Enabled option

to No.

3. Scroll to the Domain Name

option, press the Edit softkey, and then enter a new domain name.

4. Press the Validate softkey and

then press the Save softkey.

1. Unlock network configuration

options.

2. Set the DHCP Enabled option

to No.

3. Scroll to the IP Address

option, press the Edit softkey, and then enter a new IP Address.

4. Press the Validate softkey and

then press the Save softkey.

options.

4-6

2. Set the DHCP Enabled option

to No.

3. Scroll to the Subnet Mask

option, press the Edit softkey, and then enter a new subnet mask.

4. Press the Validate softkey and

then press the Save softkey.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

Page 75

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Table 4-2 Network Configuration Menu Options (continued)

Option Description To Change

TFTP Server 1 Primary Trivial File Transfer Protocol

(TFTP) server used by the phone. If you are not using DHCP in your network and you want to change this server, you must use the TFTP Server 1 option.

If you set the Alternate TFTP option to yes, you must enter a non-zero value for the TFTP Server 1 option.

If neither the primary TFTP server nor the backup TFTP server is listed in the CTL file on the phone, you must unlock the CTL file before you can save changes to the TFTP Server 1 option. In this case, the phone will delete the CTL file when you save changes to the TFTP Server 1 option.

For information about the CTL file, refer to

Cisco Unified Communications Manager Security Guide. For information about

unlocking the CTL file, see the

“Security

Configuration Menu” section on page 4-32.

TFTP Server 2 Optional backup TFTP server that the

phone uses if the primary TFTP server is unavailable.

If neither the primary TFTP server nor the backup TFTP server is listed in the CTL file on the phone, you must unlock the CTL file before you can save changes to the TFTP Server 2 option. In this case, the phone will delete the CTL file when you save changes to the TFTP Server 2 option.

For information about the CTL file, refer to

Cisco Unified Communications Manager Security Guide. For information about

unlocking the CTL file, see to the

“Security

Configuration Menu” section on page 4-32.

1. Unlock the CTL file, if

necessary.

2. If DHCP is enabled, set the

Alternate TFTP option to Yes.

3. Scroll to the TFTP Server 1

option, press the Edit softkey, and then enter a new TFTP server IP address.

4. Press the Validate softkey,

and then press the Save softkey.

1. Unlock the CTL file, if

necessary.

2. Unlock network configuration

options.

3. Enter an IP address for the

TFTP Server 1 option.

4. Scroll to the TFTP Server 2

option, press the Edit softkey, and then enter a new backup TFTP server IP address.

5. Press the Validate softkey,

and then press the Save softkey.

Network Configuration Menu

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-7

Page 76

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Network Configuration Menu

Table 4-2 Network Configuration Menu Options (continued)

Option Description To Change

Default Router 1

Default Router 2

Default Router 3

Default Router 4

Default Router 5

DNS Server 1

DNS Server 2

DNS Server 3

DNS Server 4

DNS Server 5

Default router used by the phone (Default Router 1) and optional backup routers (Default Router 2–5).

Primary Domain Name System (DNS) server (DNS Server 1) and optional backup DNS servers (DNS Server 2–5) used by the phone.

1. Unlock network configuration

options.

2. Set the DHCP Enabled option

to No.

3. Scroll to the appropriate

Default Router option, press the Edit softkey, and then enter a new router IP address.

4. Press the Validate softkey.

5. Repeat Steps 3 and 4 as needed

to assign backup routers.

6. Press the Save softkey.

1. Unlock network configuration

options.

2. Set the DHCP Enabled option

to No.

3. Scroll to the appropriate DNS

Server option, press the Edit softkey, and then enter a new DNS server IP address.

4. Press the Validate softkey.

5. Repeat Steps 3 and 4 as needed

to assign backup DNS servers.

Operational VLAN IDAuxiliary Virtual Local Area Network

(VLAN) configured on a Cisco Catalyst switch in which the phone is a member.

If the phone has not received an auxiliary VLAN, this option indicates the Administrative VLAN.

If neither the auxiliary VLAN nor the Administrative VLAN are configured, this option is blank.

Admin. VLAN ID Auxiliary VLAN in which the phone is a

member.

Used only if the phone does not receive an auxiliary VLAN from the switch, ignored otherwise.

6. Press the Save softkey.

The phone obtains its Operational VLAN ID via Cisco Discovery Protocol (CDP) from the switch to which the phone is attached. To assign a VLAN ID manually, use the Admin VLAN ID option.

1. Unlock network configuration

options.

2. Scroll to the Admin. VLAN ID

option, press the Edit softkey, and then enter a new Admin VLAN setting.

3. Press the Validate softkey and

then press the Save softkey.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

4-8

OL-12650-01

Page 77

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Table 4-2 Network Configuration Menu Options (continued)

Option Description To Change

DHCP Enabled Indicates whether DHCP is being used by

the phone.

DHCP Address

Releases the IP address assigned by DHCP. 1. Unlock network configuration

Released

1. Unlock network configuration

options.

2. Scroll to the DHCP Enabled

option and press the No softkey to disable DHCP, or press the Yes softkey to enable DHCP.

3. Press the Save softkey.

options.

2. Scroll to the DHCP Address

Released option and press the Yes softkey to release the IP address assigned by DHCP, or press the No softkey if you do not want to release this IP address.

Network Configuration Menu

Alternate TFTP Indicates whether the phone is using an

alternative TFTP server.

3. Press the Save softkey.

1. Unlock network configuration

options.

2. Scroll to the Alternate TFTP

option and press the Yes softkey if the phone should use an alternative TFTP server. Press the No softkey otherwise.

3. Press the Save softkey.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-9

Page 78

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Network Configuration Menu

Table 4-2 Network Configuration Menu Options (continued)

Option Description To Change

SW Port Configuration

Speed and duplex of the network port (labeled 10/100/1000 SW). Valid values:

1. Unlock network configuration

options.

• Auto Negotiate

• 10 Half—10-BaseT/half duplex

• 10 Full—10-BaseT/full duplex

• 100 Half—100-BaseT/half duplex

• 100 Full—100-BaseT/full duplex

• 1000 Full—1000-BaseT/full duplex

If the phone is connected to a switch, configure the port on the switch to the same speed/duplex as the phone, or configure both to auto-negotiate.

If you change the setting of this option, you should change the PC Port Configuration option to the same setting. This ensures that the PC receives the full benefits of the network operating speed.

2. Scroll to the SW Port

Configuration option and then press the Edit softkey.

3. Scroll to the setting that you

want and then press the Select softkey.

4. Press the Save softkey.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

4-10

OL-12650-01

Page 79

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Table 4-2 Network Configuration Menu Options (continued)

Option Description To Change

PC Port Configuration

Speed and duplex of the access port (labeled 10/100/1000 PC). Valid values:

1. Unlock network configuration

options.

Network Configuration Menu

• Auto Negotiate

• 10 Half—10-BaseT/half duplex

• 10 Full—10-BaseT/full duplex

• 100 Half—100-BaseT/half duplex

• 100 Full—100-BaseT/full duplex

• 1000 Full—1000-BaseT/full duplex

If the phone is connected to a switch, configure the port on the switch to the same speed/duplex as the phone, or configure both to auto-negotiate.

If you change the setting of this option, you should change the SW Port Configuration option to the same setting. This ensures that the PC receives the full benefits of the network operating speed.

PC VLAN Allows the phone to interoperate with 3rd

party switches that do not support a voice VLAN. The Admin VLAN ID option must be set before you can change this option.

2. Scroll to the PC Port

Configuration option and then press the Edit softkey.

3. Scroll to the setting that you

want and then press the Select softkey.

4. Press the Save softkey.

1. Unlock network configuration

options.

2. Make sure the Admin VLAN

ID option is set.

3. Scroll to the PC VLAN

option, press the Edit softkey, and then enter a new PC VLAN setting.

4. Press the Validate softkey and

then press the Save softkey.

Related Topics

• Displaying a Configuration Menu, page 4-2

• Unlocking and Locking Options, page 4-3

• Editing Values, page 4-3

• Overview of Options Configurable from a Phone, page 4-4

• Device Configuration Menu, page 4-12

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-11

Page 80

Device Configuration Menu

The Device Configuration menu provides access to nine sub-menus from which you can view a variety of settings that are specified in the configuration file for a phone. (The phone downloads the configuration file from the TFTP server.) These sub-menus are:

• CallManager Configuration menu, page 4-12

• SIP Configuration Menu (SIP Phones Only), page 4-14

• HTTP Configuration Menu, page 4-18

• Locale Configuration Menu, page 4-19

• UI Configuration Menu, page 4-20

• Media Configuration Menu, page 4-22

• Power Save Configuration Menu, page 4-25

• Ethernet Configuration Menu, page 4-26

• Security Configuration Menu, page 4-27

• QoS Configuration Menu, page 4-28

• Network Configuration, page 4-29

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

For instructions about how to access the Device Configuration menu and its sub-menus, see the

“Displaying a Configuration Menu” section on page 4-2.

CallManager Configuration menu

The CallManager Configuration menu contains these options:

• Communications Manager 1

• Communications Manager 2

• Communications Manager 3

• Communications Manager 4

• Communications Manager 5

These options show Cisco Unified Communications Manager servers that are available for processing calls from the phone, in prioritized order. To change these options, use Cisco Manager Administration.

Unified Communications

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

4-12

OL-12650-01

Page 81

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

For an available Cisco Unified Communications Manager server, an option on the CallManager Configuration menu will show the Cisco and one of the states shown in

Table 4-3 Cisco Unified Communications Manager Server States

State Description

Active Cisco Unified Communications Manager server from

which the phone is currently receiving call-processing services

Standby Cisco Unified Communications Manager server to

which the phone switches if the current server becomes unavailable

Blank No current connection to this Cisco

Unified

An option may also display one of more of the designations or icons shown in Table 4-4.

Device Configuration Menu

Unified Communications Manager server IP address or name

Table 4-3.

Communications Manager server

Table 4-4 Cisco Unified Communications Manager Server Designations

Designation Description

SRST Indicates a Survivable Remote Site Telephony router

capable of providing Cisco Unified

Communications Manager functionality with a limited feature set. This router assumes control of call processing if all other Cisco Unified Communications Manager servers become unreachable. The SRST Cisco Unified

Communications Manager always appears

last in the list of servers, even if it is active.

You configure an SRST router address in the Cisco Unified

Communications Manager Administration

SRST Reference Configuration page (choose System > SRST). You configure an SRST reference in the Device Pool Configuration page (choose System > Device Pool).

TFTP Indicates that the phone was unable to register with a

Cisco Unified Communications Manager listed in its configuration file and that it registered with the TFTP server instead.

Indicates that the connection to the Cisco Unified

Communications Manager is authenticated.

For more information about authentication, refer to

(Authentication icon)

Cisco Unified Communications Manager Security Guide.

Indicates that the connection to the Cisco Unified

Communications Manager is authenticated

and encrypted. For more information about

(Encryption icon)

authentication and encryption, refer to Cisco Unified Communications Manager Security Guide.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-13

Page 82

Device Configuration Menu

SIP Configuration Menu (SIP Phones Only)

The SIP Configuration menu is available on SIP phones. This menu contains these sub-menus:

• SIP General Configuration Menu, page 4-14

• Line Settings Menu, page 4-16

SIP General Configuration Menu

The SIP General Configuration menu displays information about the configurable SIP parameters on a SIP phone.

Table 4-5 SIP General Configuration Menu Options

Option Description To Change

Preferred CODEC Displays the CODEC to use when a call

is initiated. This value will always be set to none.

Out of Band DTMF Displays the configuration of the

out-of-band signaling (for tone detection on the IP side of a gateway). The Cisco Unified SIP IP phone supports out-of-band signaling using the AVT tone method. This value will always be set to avt.

a proxy server during initialization. This value will always be set to true.

seconds, after which a registration request expires.

Phone Label Displays the text that is displayed on

the top right status line of the LCD on the phone. This text is for end-user display only and has no effect on caller identification or messaging. This value will always be set to null.

Enable VAD Displays if voice activation detection

(VAD) is enabled.

Start Media Port Displays the start Real-Time Transport

Protocol (RTP) range for media.

Table 4-5 describes the options in this menu.

Display only—cannot configure.

From Cisco Unified Communications Manager Administration, choose

Device > Device Profile.

Display only—cannot configure.

From Cisco Unified Communications Manager Administration, choose

Device > Device Profile.

From Cisco Unified Communications Manager Administration, choose

Device > Device Profile.

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Settings > SIP

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

4-14

OL-12650-01

Page 83

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Table 4-5 SIP General Configuration Menu Options (continued)

Option Description To Change

End Media Port Displays the end Real-Time Transport

Protocol (RTP) range for media.

Backup Proxy Displays the IP address of the backup

proxy server or gateway. This value will always be set to USECommunications Manager.

Backup Proxy Port Displays the port number of the backup

proxy server or gateway. This value will always be set to 5060.

Emergency Proxy Displays the IP address of the

emergency proxy server or gateway. This value will always be set to USECommunications Manager.

Emergency Proxy Port

Displays the port number of the emergency proxy server or gateway. This value will always be set to 5060.

Outbound Proxy Displays the IP address of the outbound

proxy server. This value will always be set to USECommunications Manager.

Outbound Proxy Port

Displays the port number of the outbound proxy server. This value will always be set to 5060.

NAT Enabled Displays if Network Address

Translation (NAT) is enabled. This value will always be set to false.

NAT Address Displays the WAN IP address of the

NAT or firewall server. This value will always be set to null.

Call Statistics Displays if call statistics are enabled on

the phone.

From Cisco Unified Communications Manager Administration, choose

Device > Device Profile.

Display only—cannot configure.

From Cisco Unified Communications Manager Administration, choose

Device > Device Profile.

Device Configuration Menu

Settings > SIP

Related Topics

• Displaying a Configuration Menu, page 4-2

• Device Configuration Menu, page 4-12

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-15

Page 84

Device Configuration Menu

Line Settings Menu

The Line Settings menu displays information that relates to the configurable parameters for each of the lines on a SIP phone.

Table 4-6 Line Settings Menu Options

Option Description To Change

Name Displays the number the line uses when

registering.

Short Name Displays the short name configured for

the line.

Authentication Name

Displays the name used by the phone for authentication if a registration is challenged by the call control server during initialization.

Display Name Displays the identification the phone

uses for display for caller identification purposes.

Proxy Address Displays the IP address of the proxy

server that will be used by the phone. This value will always be set to USECommunications Manager.

Proxy Port Displays the port number of the proxy

server that will be used by the phone. This value will always be set to 5060.

Shared Line Displays if the line is part of a shared

line (Yes) or not (No).

Table 4-6 describes the options in this menu.

Use Cisco Unified Communications Manager Administration to modify.

Display only—Cannot configure.

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

4-16

Related Topics

• Displaying a Configuration Menu, page 4-2

• Device Configuration Menu, page 4-12

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

Page 85

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Call Preferences Menu

The Call Preferences menu displays settings that relate to the settings for the call preferences on a SIP phone.

Table 4-7 Call Preferences Menu Options

Option Description To Change

Caller ID Blocking Indicates whether caller ID blocking is

enabled (Yes) or disabled (No) for the phone.

Anonymous Call Block

Indicates whether anonymous call block is enabled (Yes) or disabled (No) for the phone.

Call Waiting Preferences

Displays a sub-menu that indicates whether call waiting is enabled (Yes) or disabled (No) for each line.

Call Hold Ringback Indicates whether the call hold

ringback feature is enabled (Yes) or disabled (No) for the phone.

Stutter Msg Waiting

Indicates whether stutter message waiting is enabled (Yes) or disabled (No) for the phone.

Call Logs BLF Enabled

Indicates whether BLF for call logs is enabled (Yes) or disabled (No) for the phone.

Auto Answer Preferences

Displays a sub-menu that indicates whether auto answer is enabled (Yes) or disabled (No) for the each line.

Speed Dials Displays a sub-menu that displays the

lines available on the phone. Select a line to see the speed dial label and number assigned to that line.

Table 4-7 describes the options in this menu.

From Cisco Unified Communications Manager Administration, choose

Device > Device Profile.

From Cisco Unified Communications Manager Administration, choose

Device > Device Profile.

From Cisco Unified Communications Manager Administration, choose

Routing > Directory Number.

Call

From Cisco Unified Communications Manager Administration, choose

Device > Device Profile.

From Cisco Unified Communications Manager Administration, choose

Device > Device Profile.

Use Cisco Unified Communications Manager Administration.

From Cisco Unified Communications Manager Administration, choose Call Routing > Directory Number.

From Cisco Unified Communications Manager Administration, choose Device > Add a New Speed Dial.

Device Configuration Menu

Settings > SIP

Related Topics

• Displaying a Configuration Menu, page 4-2

• Device Configuration Menu, page 4-12

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-17

Page 86

Device Configuration Menu

HTTP Configuration Menu

The HTTP Configuration menu displays the URLs of servers from which the phone obtains a variety of information. This menu also displays information about the idle display on the phone.

Table 4-8 describes the options on the HTTP Configuration menu.

Table 4-8 HTTP Configuration Menu Options

Option Description To Change

Directories URL URL of the server from which the

phone obtains directory information.

Services URL URL of the server from which the

phone obtains Cisco Unified IP Phone services.

Messages URL URL of the server from which the

phone obtains message services.

Information URL URL of the help text that appears on the

phone.

Authentication URL

URL that the phone uses to validate requests made to the phone web server.

Proxy Server URL URL of proxy server, which makes

HTTP requests to non-local host addresses on behalf of the phone HTTP client and provides responses from the non-local host to the phone HTTP client.

Idle URL URL of an XML service that the phone

displays when the phone has not been used for the time specified in the Idle URL Time option and no menu is open. For example, you could use the Idle URL option and the Idle URL Timer option to display a stock quote or a calendar on the LCD screen when the phone has not been used for 5 minutes.

Idle URL Time Number of seconds that the phone has

not been used and no menu is open before the XML service specified in the Idle URL option is activated.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

Use Cisco Unified Communications Manager Administration to modify >

Device > Phone > Phone Configuration.

From Cisco Unified Communications Manager Administration, choose >

Device > Phone > Phone Configuration.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

4-18

OL-12650-01

Page 87

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Locale Configuration Menu

The Locale Configuration menu displays information about the user locale and the network locale used by the phone.

Table 4-9 Locale Configuration Menu Options

Option Description To Change

User Locale User locale associated with the phone

user. The user locale identifies a set of detailed information to support users, including language, font, date and time formatting, and alphanumeric keyboard text information.

User Locale Version

User Locale Char Set

Network Locale Network locale associated with the

Network Locale Version

NTP Configuration (SIP phones only)

Version of the user locale loaded on the phone.

Character set that the phone uses for the user locale.

phone user. The network locale identifies a set of detailed information that supports the phone in a specific location, including definitions of the tones and cadences used by the phone.

Version of the network locale loaded on the phone.

Provides access to the NTP Configuration Menu. For more information, see the

Configuration Menu (SIP Phones Only)” section on page 4-19

Table 4-9 describes the options on this menu.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

Display only—Cannot configure.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

Display only—Cannot configure.

From Cisco Unified Communications Manager Administration, choose

“NTP

System > Phone > Phone NTP Reference.

Device Configuration Menu

NTP Configuration Menu (SIP Phones Only)

The NTP Configuration menu displays information about the NTP server and mode configuration used by SIP phones.

Table 4-10 NTP Configuration Menu Options

Option Description To Change

NTP Server 1 IP address of the primary NTP server. Display only—Cannot configure.

NTP Server 2 IP address of the secondary or backup

NTP server.

NTP Mode 1 Primary server mode. Supported modes

are Directed Broadcast and Unicast.

NTP Mode 2 Secondary server mode. Supported

modes are Directed Broadcast and Unicast.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

Table 4-10 describes the options on this menu.

Display only—Cannot configure.

4-19

Page 88

Device Configuration Menu

UI Configuration Menu

The UI configuration menu displays the status of various user interface features on the phone. Table 4-11 describes the options on this menu.

Table 4-11 UI Configuration Menu Options

Option Description To Change

Auto Line Select Indicates whether the phone shifts the

call focus to incoming calls on all lines.

When this option is disabled, the phone only shifts the call focus to incoming calls on the line that is in use. When this option is enabled, the phone shifts the call focus to the line with the most recent incoming call.

Default: Disabled

BLF for Call Lists Indicates whether the Busy Lamp Field

(BLF) is enabled for call lists.

Reverting Focus Priority

Indicates whether the phone shifts the call focus on the phone screen to an incoming call or a reverting hold call. Settings include:

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

From Cisco Unified Communications Manager Administration, choose System > Enterprise Parameters.

Use Cisco Unified Communications Manager to modify options.

Related Topics

• Displaying a Configuration Menu, page 4-2

• Network Configuration Menu, page 4-5

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

4-28

OL-12650-01

Page 97

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Network Configuration

The Network Configuration menu displays device-specific network configuration settings on the phone.

Table 4-17 describes the options in this menu.

Note The phone also has a Network Configuration menu that you access directly from the Settings menu. For

information about the options on that menu, see the “Network Configuration Menu” section on page 4-5.

Table 4-17 Network Configuration Menu Options

Option Description To Change

Load Server Used to optimize installation time for

phone firmware upgrades and offload the WAN by storing images locally, negating the need to traverse the WAN link for each phone's upgrade.

You can set the Load Server to another TFTP server IP address or name (other than the TFTP Server 1 or TFTP Server

2) from which the phone firmware can be retrieved for phone upgrades. When the Load Server option is set, the phone contacts the designated server for the firmware upgrade.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

Device Configuration Menu

RTP Control Protocol

Note The Load Server option allows

you to specify an alternate TFTP server for phone upgrades only. The phone continues to use TFTP Server 1 or TFTP Server 2 to obtain configuration files. The Load Server option does not provide management of the process and of the files, such as file transfer, compression, or deletion.

Indicates whether the phone supports the Real-Time Control Protocol (RTCP). Settings include:

• Enabled

• Disabled—default

If this feature is disabled, several call statistic values display as 0. For additional information, see the following sections:

• Call Statistics Screen, page 7-13

• Streaming Statistics, page 8-11

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-29

Page 98

Device Configuration Menu

Table 4-17 Network Configuration Menu Options (continued)

Option Description To Change

CDP: PC Port Indicates whether CDP is supported on

the PC port (default is enabled).

Enable CDP on the PC port when Cisco VT Advantage/Unified Video Advantage (CVTA) is connected to the PC port. CVTA does not work without CDP interaction with the phone.

Note When CDP is disabled in Cisco

Unified Communications Manager, a warning is displayed, indicating that disabling CDP on the PC port prevents CVTA from working.

Note The current PC and switch port

CDP values are shown on the Settings menu.

CDP: SW Port Indicates whether CDP is supported on

the switch port (default is enabled).

• Enable CDP on the switch port for

VLAN assignment for the phone, power negotiation, QoS management, and 802.1x security.

• Enable CDP on the switch port

when the phone is connected to a Cisco switch.

Use Cisco Unified Communications Administration > Device > Phone.

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Manager

4-30

Note When CDP is disabled in Cisco

Unified Communications Manager, a warning is presented, indicating that CDP should be disabled on the switch port only if the phone is connected to a non-Cisco switch.

Note The current PC and switch port

CDP values are shown on the Settings menu.

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

Page 99

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

Table 4-17 Network Configuration Menu Options (continued)

Option Description To Change

Peer Firmware Sharing

Log Server Indicates the IP address and port of the

The Peer Firmware Sharing feature provides these advantages in high speed campus LAN settings:

• Limits congestion on TFTP

transfers to centralized TFTP servers

• Eliminates the need to manually

control firmware upgrades

• Reduces phone downtime during

upgrades when large numbers of devices are reset simultaneously

Peer Firmware Sharing may also aid in firmware upgrades in branch/remote office deployment scenarios over bandwidth-limited WAN links.

When enabled, it allows the phone to discover like phones on the subnet that are requesting the files that make up the firmware image, and to automatically assemble transfer hierarchies on a per-file basis. The individual files making up the firmware image are retrieved from the TFTP server by only the root phone in the hierarchy, and are then rapidly transferred down the transfer hierarchy to the other phones on the subnet using TCP connections.

This menu option indicates whether the phone supports Peer Firmware Sharing. Settings include:

• Enabled

• Disabled—default

remote logging machine to which the phone sends log messages. These log messages help in debugging the Peer Firmware Sharing feature.

Use Cisco Unified Communications Manager Administration

Phone

Configuration.

Use Cisco Unified Communications Manager Administration

Device Configuration Configuration.

Device Configuration Menu

> Device > Phone >

> Settings >

> Network

Note The remote logging setting

does not affect the sharing log messages sent to the phone log.

Related Topics

• Displaying a Configuration Menu, page 4-2

• Network Configuration Menu, page 4-5

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

OL-12650-01

4-31

Page 100

Security Configuration Menu

The Security Configuration that you access directly from the Settings menu provides information about various security setting. It also provides access to the CTL File menu and the Trust List menu, if a CTL file is installed on the phone.

For information about how to access the Security Configuration menu and its sub-menus, see the

“Displaying a Configuration Menu” section on page 4-2.

Note The phone also has a Security Configuration menu that you access from the Device menu. For

information about the security options on that menu, see the

page 4-27.

Table 4-18 describes the options in the security configuration menu.

Table 4-18 Security Menu Settings

Option Description To Change

Web Access Enabled Indicates whether web access is

enabled (Yes) or disabled (No) for the phone.

Security Mode Displays the security mode that is set

for the phone.

MIC Indicates whether a manufacturing

installed certificate (used for the security features) is installed on the phone (Yes) or is not installed on the phone (No).

LSC Indicates whether a locally

significant certificate (used for the security features) is installed on the phone (Yes) or is not installed on the phone (No).

CTL File Displays the MD5 hash of the

certificate trust list (CTL) file that is installed in the phone. If no CTL file is installed on the phone, this field displays No. (If security is configured for the phone, the CTL file installs automatically when the phone reboots or resets.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

From Cisco Unified Communications Manager Administration, choose

Device > Phone > Phone Configuration.

For information about how to manage the MIC for your phone, refer to the “Using the Certificate Authority Proxy Function” chapter in Cisco

Unified Security Guide.

For information about how to manage the LSC for your phone, refer to the “Using the Certificate Authority Proxy Function” chapter in Cisco

Unified Security Guide.

For more information about this file, refer to the “Configuring the Cisco CTL Client” section in Cisco

Unified Security Guide.

If a CTL file is installed on the phone, also provides access to the CTL File screen. For more information, see the

“CTL File Menu” section on page 4-33.

Communications Manager

Chapter 4 Configuring Settings on the Cisco Unified IP Phone

“Security Configuration Menu” section on

Cisco Unified IP Phone 7965G and 7945G Administration Guide for Cisco Unified Communications Manager 6.0

4-32

OL-12650-01