Procedure To Encrypt Configuration Files; To Configure The Common Aes Key Via Web User Interface - Yealink SIP-T2xP Administration Manual

Sip-t2xp ip phone family

Hide thumbs Also See for SIP-T2xP:

Administrator's manual (589 pages)

Auto provisioning manual (294 pages)

Provisioning manual (294 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

Table Of Contents

247

Table of Contents

Administrator's Guide for SIP-T2xP IP Phones

The IP phone can download the encrypted configuration files from the configuration

server to protect against unauthorized access and tampering of sensitive information

(i.e., login passwords, registration information). Configuration files can be encrypted

using a command line tool. The encryption algorithm is AES 128. From a Microsoft

Windows command line, an administrator can use the Yealink-supplied encryption tool

called "EncryptUtilityWindows.exe" to encrypt the <y0000000000xx>.cfg and

<MAC>.cfg files respectively.

Note

Yealink also supplies an encryption tool (EncryptUtilityLinux.exe) to support Linux

platforms if required.

You can also encrypt the configuration files using the Yealink Configuration Conversion

Tool. Refer to the Yealink Configuration Conversion Tool User Guide for more information.

The filename extension of the encrypted configuration files must be .cfg. The common

AES key is used to encrypt and decrypt the <y0000000000xx>.cfg file and the

MAC-Oriented AES key is used to encrypt decrypt the <MAC>.cfg file. The AES keys

must be configured on the phone before downloading the encrypted configuration files.

The AES keys must be 16 characters.

Procedure to Encrypt Configuration Files

To encrypt the <y0000000000xx>.cfg file:

Save the ―EncryptUtilityWindows.exe‖ tool and <y0000000000xx>.cfg file to the

same directory (i.e., D:\).

Open a command line window application (i.e., DOS window).

Enter the following command, and then press the <Enter> key.

D:EncryptUtilityWindows.exe 123456789abcdef0 e F:\y000000000000.cfg

D:\y000000000000.cfg

#D:EncryptUtilityWindows.exe <a 16-character secret key> e <a new

directory and file name for the encrypted configuration file> <the

directory and file name of the configuration file to be encrypted>

Save the encrypted configuration file to the root directory of the configuration

server.

To configure the common AES key via web user interface:

Click on Upgrade->Advanced.

Enter the secret key (i.e., 123456789abcdef0) in the Common AES Key field.

Click Confirm to save the change.

The way for encrypting the <MAC>.cfg file is the same as the < y0000000000xx >.cfg

file, and then configure the MAC-Oriented AES key in the MAC-Oriented AES Key field.

Table of Contents

Show Quick Links

Quick Links:
Snmp

Hide quick links:

Table of Contents

Troubleshooting

This manual is also suitable for:

Sip-t28p Sip-t26p Sip-t22p Sip-t20p

Procedure To Encrypt Configuration Files; To Configure The Common Aes Key Via Web User Interface - Yealink SIP-T2xP Administration Manual

Procedure to Encrypt Configuration Files

To configure the common AES key via web user interface:

Hide quick links:

Troubleshooting

Related Manuals for Yealink SIP-T2xP

Related Content for Yealink SIP-T2xP

This manual is also suitable for:

Table of Contents