Crestron Flex Series Reference Manual
  1. Manuals
  2. Brands
  3. Crestron Manuals
  4. IP Phone
  5. Flex Series
  6. Reference manual

Crestron Flex Series Reference Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Crestron Flex Phones
Security Reference Guide
Crestron Electronics, Inc.

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the Flex Series and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Crestron Flex Series

Summary of Contents for Crestron Flex Series

  • Page 1 Crestron Flex Phones Security Reference Guide Crestron Electronics, Inc.
  • Page 2 Crestron disclaims any proprietary interest in the marks and names of others. Crestron is not responsible for errors in typography or photography.
  • Page 3 Revision History Date Notes Author(s) July 29, 2022 Initial version Please send comments and change recommendations to: SecurityDocs@crestron.com Security Reference Guide — Doc. 9313A Crestron Flex Phones • i...

  • Page 4: Table Of Contents

    Contents Overview Ports and Protocols Prerequisites Operating Environment Firmware Version Device Access Default Configuration Settings Microsoft Teams Secure Deployment Required Configuration Create an Admin Account Password Configure the Network Wired Network Configuration Wi-Fi Network Configuration 802.1X Authentication Set the Time and Date Configure the Remote Syslog Optional Configuration Add Users and Groups...

  • Page 5: Overview

    Overview This document describes the steps needed to harden a Crestron® installation with Crestron Flex Phones and assumes a basic understanding of security functions and protocols. This guide provides information about the system configuration used for Crestron Flex Phones firmware release 1.0.4.22 or later.
  • Page 6 Model Description UC-P10-T-C-HS Crestron Flex 10 in. Video Desk Phone with Handset for Microsoft Teams® Software UC-P10-T-C-HS-I Crestron Flex 10 in. Video Desk Phone with Handset for Microsoft Teams® Software, International 2 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...

  • Page 7: Ports And Protocols

    Service only and not required for device functionality. A persistent connection is made via AMQP over WebSockets. HTTPS services such as routing lookups and file transfers may be used. Security Reference Guide — Doc. 9313A Crestron Flex Phones • 3...
  • Page 8 Remote Syslog Configurable Device Remote Syslog Uses TLS Server HTTP Proxy Configurable Device Proxy Server HTTPS Proxy Configurable Device Proxy Server Kerberos 88/TCP Device KDC (Key Distribution Center) 3/TCP/UDP Device DNS server 4 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...

  • Page 9: Prerequisites

    In order to perform a secure configuration, the following prerequisites must be met. Operating Environment Crestron assumes the following about the operating environment of its systems: The system is not capable of Multi-Factor Authentication (MFA). If your organization's policy requires MFA, you cannot use the system.

  • Page 10: Microsoft Teams Secure Deployment

    Microsoft Teams Secure Deployment The device runs the Microsoft Teams® software app. For more information on how to securely deploy Microsoft Teams across an enterprise, refer to docs.microsoft.com/en- us/MicrosoftTeams/security-compliance-overview. 6 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...

  • Page 11: Required Configuration

    1. Enter the default admin account username (admin) and password (admin) in the appropriate text fields. 2. Select Login. A Change Password page is displayed prompting the user to change the admin account password. Security Reference Guide — Doc. 9313A Crestron Flex Phones • 7...

  • Page 12: Configure The Network

    To configure the wired network settings for the device: 1. Select the Settings tab. 2. Expand the System Setup accordion. 3. Click the + (plus) icon next to Network to display time and date settings for the device. 8 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...
  • Page 13 4. Enter the following information for the wired network configuration. Network Configuration Primary Static DNS: Enter a primary DNS server address to use for DNS name lookups. Secondary Static DNS: Enter a secondary DNS server address to use for DNS name lookups. Security Reference Guide — Doc. 9313A Crestron Flex Phones • 9...

  • Page 14: Wi-Fi Network Configuration

    3. Click the + (plus) icon next to Network to display time and date settings for the device. Settings - Network (Wi-Fi Network Settings) 4. Turn on the Wi-Fi toggle to turn on the Wi-Fi adapter. 10 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...

  • Page 15: 802.1X Authentication

    802.1X, the device must be configured for 802.1X before being put on the network. Configure 802.1X Settings To configure 802.1X settings for the device: 1. Select the 802.1x Configuration tab to display settings for configuring 802.1X authentication. Security Reference Guide — Doc. 9313A Crestron Flex Phones • 11...
  • Page 16 Enter a search term into the text field at the top of the CA menu to search for and display CAs that match the search term. 8. Select Save Changes from the Action menu. 12 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...
  • Page 17 To configure Trusted Certificate Authorities on the device: 1. Select Manage Certificates from the Actions menu. Actions Menu The Manage Certificates dialog box is displayed. Manage Certificates Dialog Box Security Reference Guide — Doc. 9313A Crestron Flex Phones • 13...

  • Page 18: Set The Time And Date

    Custom Time Server: Enter the IP address or Fully Qualified Domain Name (FQDN) of the custom NTP server. Date Format: Use the drop-down menu to select the format that the date will display on the device. 14 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...

  • Page 19: Configure The Remote Syslog

    TLS-enabled server with the appropriate certificates is required. 1. Select the Settings tab. 2. Expand the Remote Syslog accordion to display settings for the remote Syslog. Settings - Remote Syslog 3. Turn on the Syslog toggle. Security Reference Guide — Doc. 9313A Crestron Flex Phones • 15...
  • Page 20 Enter a search term into the text field at the top of the CA menu to search for and display CAs that match the search term. 5. Select Save Changes from the Action menu. 16 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...

  • Page 21: Optional Configuration

    Microsoft Teams APK is available, the update will be downloaded and installed automatically. If your environment or policies do not permit automatic updates, this setting can be turned off. Security Reference Guide — Doc. 9313A Crestron Flex Phones • 17...

  • Page 22: Configure A Connection To Xio Cloud

    To turn off a connection to XiO Cloud: 1. Select the Settings tab. 2. Expand the XiO Cloud accordion to display settings for the XiO Cloud connection. Settings - XiO Cloud 18 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...
  • Page 23 3. Turn off the XiO Cloud Connection toggle. 4. Select Save Changes from the Action menu. Security Reference Guide — Doc. 9313A Crestron Flex Phones • 19...

  • Page 24: Management Functions

    NOTE: The device does not support any local access levels outside of the local admin account. User and group access levels are created and managed through Active Directory. The following sections describe how to manage users and groups on the device. 20 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...

  • Page 25: Add A User

    5. Enter the user name in the Name text field. The user name must match exactly the user name in Active Directory. 6. Select Yes to create the new user. The user is added to the Users table on the Security page. Security Reference Guide — Doc. 9313A Crestron Flex Phones • 21...

  • Page 26: Delete A User

    To add an Active Directory group to the device: 1. Select the Security tab. 2. Expand the Access Control accordion. 3. Select the Groups tab to display settings for configuring groups on the device. 22 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...

  • Page 27: Delete A Group

    To delete an Active Directory group from the device: 1. Select the Security tab. 2. Expand the Access Control accordion. 3. Select the Groups tab to display settings for configuring groups on the device. Security Reference Guide — Doc. 9313A Crestron Flex Phones • 23...
  • Page 28 A dialog box is displayed confirming the deletion. 5. Select Yes to delete the group. The group is removed from the device but not from the Active Directory service. 24 • Crestron Flex Phones Security Reference Guide — Doc. 9313A...
  • Page 29 Crestron Electronics, Inc. Security Reference Guide — Doc. 9313A 15 Volvo Drive, Rockleigh, NJ 07647 07/29/22 Tel: 888.CRESTRON Specifications subject to Fax: 201.767.7656 change without notice. www.crestron.com...

This manual is also suitable for:

Flex 8Flex 10Uc-p8-tUc-p8-t-iUc-p8-t-hsUc-p8-t-hs-i ... Show all

Table of Contents