Encrypting And Decrypting Files - Yealink SIP-T3 Administrator's Manual
Hide thumbs
Also See for SIP-T3:
- Auto provisioning manual (155 pages) ,
- Administrator's manual (578 pages)
Table of Contents
Advertisement
using SRTP.
Note: It works only if "account.X.srtp_encryption" is set to 1 (Optional) or 2 (Compulsory).
0-Disabled
Permitted
1-Enabled, the phone offers both encrypted and unencrypted RTP streams (Unencrypted RTP
Values
streams carry UNENCRYPTED_SRTP session parameters) in SDP offers. After a successful nego-
tiation, whether the RTP stream is encrypted or not depends on the SDP answer.
Default
0
Parameter account.X.srtp.unencrypted_rtcp.enable
It enables or disables the phone's capability to include unencrypted RTCP streams in SDP offers
when using SRTP.
Description
Note: It works only if "account.X.srtp_encryption" is set to 1 (Optional) or 2 (Compulsory).
0-Disabled
Permitted
1-Enabled, the phone offers both encrypted and unencrypted RTCP streams (Unencrypted RTCP
Values
streams carry UNENCRYPTED_SRTCP session parameters) in SDP offers. After a successful nego-
tiation, whether the RTCP stream is encrypted or not depends on the SDP answer.
Default
0
Parameter account.X.tls.srtp_encryption_compulsorily
Description It controls the mode of dynamic SRTP.
0-Whether the phone enables SRTP is controlled by "account.X.srtp_encryption".
1-If the account is registered with TLS, SRTP is forced to be enabled, and the configuration of "accoun-
t.X.srtp_encryption" is invalid; if the account is registered with TCP or UDP, whether to enable SRTP is
Permitted
controlled by "account.X.srtp_encryption".
Values
2-If the account is registered with TLS, SRTP is forced to be enabled, and no Mediasec related header
field will be carried during registration. The configuration of "account.X.srtp_encryption" is invalid; if
the account is registered with TCP or UDP, whether to enable SRTP is controlled by "account.X.srtp_
encryption".
Default
0
[1]
X is the account ID. For T57W/T54W/T48U/T48S/T48G/T46U/T46S/T46G/T29G, X=1-16; for
T53W/T53/T53C/T43U/T42G/T42U/T42S, X=1-12; for T41P/T41S/T27G, X=1-6; for T33P/T33G, X=1-4; for
T40P/T40G/T23P/T23G, X=1-3; for T31P/T31G/T31/T21(P) E2, X=1-2; for T30P/T30/T19(P)
E2/CP920/CP925/CP935W, X=1.
Encrypting and Decrypting Files
Yealink phones support downloading encrypted files from the server and encrypting files before/when uploading
them to the server.
You can encrypt the following files:
Configuration files: MAC-Oriented CFG file (<MAC>.cfg), Common CFG file (y0000000000xx.cfg), MAC-local
l
CFG file (<MAC>-local.cfg) or other custom CFG files (for example, sip.cfg, account.cfg)
Contact Files: <MAC>-contact.xml
l
To encrypt/decrypt files, you may have to configure an AES key.
Note
: AES keys must be 16 characters/32 characters. The supported characters contain: 0 ~ 9, A ~ Z, a ~ z and special char-
acters: # $ % * + , - . : = ? @ [ ] ^ _ { } ~.
Topics
[1]
[1]
Security Features
<MAC>.cfg
<MAC>.cfg
126
Advertisement
Table of Contents
Troubleshooting
