Aastra Telecom 41-001343-02 User Manual
Administrator Level Options
41-001343-02 REV04 – 05.2014
3-54
802.1x Support
The IP phones support the IEEE 802.1x Protocol. The 802.1x Protocol is a standard for passing Extensible Authentication
Protocol (EAP) over a wired or wireless Local Area Network (LAN).
Protocol (EAP) over a wired or wireless Local Area Network (LAN).
The 802.1x Protocol on the IP phone facilitates media-level access control, and offers the capability to permit or deny net-
work connectivity, control LAN access, and apply traffic policy, based on user or endpoint identity. This feature supports
both the EAP-MD5 and EAP-TLS Protocols.
work connectivity, control LAN access, and apply traffic policy, based on user or endpoint identity. This feature supports
both the EAP-MD5 and EAP-TLS Protocols.
An Administrator can configure the following parameters for the 802.1x Protocol.
Note:
If configuring 802.1x using the IP Phone UI, the certificates and private keys must already be configured and stored on
the phone. Use the configuration files or the Aastra Web UI to load certificates and private keys.
the phone. Use the configuration files or the Aastra Web UI to load certificates and private keys.
Parameter In
IP Phone UI
IP Phone UI
Parameter in
Aastra Web UI
Aastra Web UI
Parameters in Configura-
tion Files
tion Files
Description
General
802.1x Mode
EAP Type
eap-type
Specifies the type of authentication to use on the IP Phone.
For more information, see Chapter 6, the section,
.
Identity
Identity
identity
Specifies the identity or username used for authenticating the phone.
Note:
The value you enter for this parameter also displays in the Aastra Web UI at
the path Advanced Settings->802.1x Support->General->Identity
The value you enter for this parameter also displays in the Aastra Web UI at
the path Advanced Settings->802.1x Support->General->Identity
For more information, see Chapter 6, the section,
.
EAP-MD5 Settings
MD5 Password
MD5 Password
md5 password
Specifies the password used for the MD5 authentication of the phone.
Note:
The value you enter for this parameter also displays in the Aastra Web UI at
the path Advanced Settings->802.1x Support->EAP-MD5 Settings->MD5
Password. The password displays as “*******”.
The value you enter for this parameter also displays in the Aastra Web UI at
the path Advanced Settings->802.1x Support->EAP-MD5 Settings->MD5
Password. The password displays as “*******”.
For more information, see Chapter 6, the section,
.
EAP-TLS Settings
N/A
Root and Intermediate
Certificates Filename
Certificates Filename
802.1x root and intermediate
certificates
certificates
Specifies the file name that contains the root and intermediate certificates
related to the local certificate.
related to the local certificate.
For more information, see Chapter 6, the section,
.
N/A
Local Certificate
Filename
Filename
802.1x local certificate
Specifies the file name that contains the local certificate.
For more information, see Chapter 6, the section,
.
N/A
Private Key Filename
802.1x private key
Specifies the file name that contains the private key.
For more information, see Chapter 6, the section,
.
N/A
Trusted Certificates
Filename
Filename
802.1x trusted certificates
Specifies the file name that contains the trusted certificates.
For more information, see Chapter 6, the section,
.