Troubleshooting Cisco Unified Ip Phone Security - Cisco 7962G Administration Manual

For cisco unified communications manager 6.0

Hide thumbs Also See for 7962G:

Administration manual (235 pages)

User manual (110 pages)

Specifications (5 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

Table of Contents

Chapter 9

Troubleshooting and Maintenance

Troubleshooting Cisco Unified IP Phone Security

Table 9-1

For information relating to the solutions for any of these issues, and for additional troubleshooting

information about security and encryption, refer to Cisco Unified Communications Manager Security

Guide.

Table 9-1

Cisco Unified IP Phone Security Troubleshooting

Problem

Device authentication error.

Phone cannot authenticate CTL file. The security token that signed the updated CTL file does not

Phone cannot authenticate any of the

configuration files other than the

CTL file.

Phone reports TFTP authorization

failure.

Phone does not register with Cisco

Unified Communications Manager.

Phone does not request signed

configuration files.

802.1X Enabled on Phone but Not Authenticating

Phone cannot obtain a

DHCP-assigned IP address

Phone does not register with

Cisco Unified Communications

Manager

Phone status display as

"Configuring IP" or "Registering"

802.1X Authentication Status

displays as "Held" (see the

Authentication and Status" section

on page

4-33).

Status menu displays 802.1x status

as "Failed" (see the

"Call Statistics

Screen" section on page

7-12).

802.1X Not Enabled

OL-12641-01

provides troubleshooting information for the security features on the Cisco Unified IP Phone.

Possible Cause

CTL file does not have a Cisco Unified Communications

Manager certificate or has an incorrect certificate.

exist in the CTL file on the phone.

Bad TFTP record.

The TFTP address for the phone does not exist in the CTL

•

file.

If you created a new CTL file with a new TFTP record, the

•

existing CTL file on the phone may not contain a record for

the new TFTP server.

The CTL file does not contain the correct information for the

Cisco Unified Communications Manager server.

The CTL file does not contain any TFTP entries with

certificates.

These errors typically indicate that 802.1X is enabled on the

phone, but the phone is unable to authenticate.

Verify that you have properly configured the required

components

Unified IP Phones" section on page

Confirm that the shared secret is configured on the phone

(see the

"Security Configuration Menu" section on

page 4-25

"802.1X

If the shared secret is configured, verify that you have

–

the same shared secret entered on the authentication

server.

If the shared secret is not configured, enter it and ensure

–

that it matches the one on the authentication server.

Cisco Unified IP Phone 7962G and 7942G Administration Guide for Cisco Unified Communications Manager 6.0

"Supporting 802.1X Authentication on Cisco

1-16.

for more information).

Troubleshooting Cisco Unified IP Phone Security

9-9

Table of Contents

Troubleshooting

This manual is also suitable for:

7942g

Troubleshooting Cisco Unified Ip Phone Security - Cisco 7962G Administration Manual

Troubleshooting Cisco Unified IP Phone Security

Troubleshooting

Related Manuals for Cisco 7962G

Related Content for Cisco 7962G

This manual is also suitable for:

Table of Contents