Security - Siemens HiPath 2000 Administration Manual

Hide thumbs Also See for HiPath 2000:

User manual (214 pages)

Operating manual (152 pages)

Operating instructions manual (141 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

Table of Contents

administration.fm

Administration

System Settings

3.5.7

Security

OpenStage phones support two security options, which are mutually exclusive:

•

H.235 Authentication and Encryption

•

PKI-based SPE (Signaling and Payload Encryption)

The security settings are be configured separately for the main gateway and for the fallback

gateway (standby) when using SRSR (Small Remote Site Redundancy).

Secure H.235 main/standby sets the stage of security for communication between phone and

gatekeeper. When set to "None", there is no voice encryption. When set to "Partial", only the

data sent from the phone to the gatekeeper is encrypted. With "Full", the data sent in both di-

rections is encrypted.

The Time H.235 main/standby parameter defines a time window in milliseconds for the gate-

way. The gateway only accepts messages which arrive within this time window.

The Signalling transport main/standby parameter selects the protocol to use for signalling.

TCP and TLS are avaliable.

Certificate validation main/standby determines whether the phone certificate used for en-

crypted logon via TLS is checked against the certificate on the gateway.

For further information on deploying SPE, please refer to the manual of the HiPath

system in use, and to the Deployment Service Administration manual.

Data required

•

Secure H.235 main: Security stage for communication when the main gateway is in use.

Value range: "None", "Partial", "Full".

•

Secure H.235 standby: Security stage for communication when the standby gateway is in

use.

Value range: "None", "Partial", "Full".

•

Time H.235 main: Time window length in ms when the main gateway is in use.

•

Time H.235 standby: Time window length in ms when the main gateway is in use.

•

Signalling transport main: Protocol to use for signalling when the main gateway is in use.

Value range: "TCP", "TLS".

•

Signalling transport standby: Protocol to use for signalling when the standby gateway is

in use.

Value range: "TCP", "TLS".

•

Certificate validation main: Check the phone certificate against the gateway certificate

when the main gateway is in use.

Value range: true, false.

•

Certificate validation standby: Check the phone certificate against the gateway certifi-

cate when the main gateway is in use.

Value range: true, false.

3-32

HiPath 2000/3000/5000 - OpenStage Family, Administration Manual

A31003-S2010-M100-10-7619, 27/08/2008

Table of Contents

Troubleshooting

This manual is also suitable for:

Hipath openoffice Hipath 5000 Hipath 3000 Openstage 80 Openstage 40 Openstage 60 ... Show all

Security - Siemens HiPath 2000 Administration Manual

Security

Troubleshooting

Related Manuals for Siemens HiPath 2000

Related Content for Siemens HiPath 2000

This manual is also suitable for:

Table of Contents