FAQ/How do I secure my phone

From Snom User Wiki

< FAQ
Jump to: navigation, search

Contents

How do I secure my phone?

There are a few basic steps to secure your phone from external access.

Step 1: Setup a username and a password for the Web User Interface

Find out the IP address of your phone (from the Menu select Maintenance > System Info)

File:IP.jpg

Access the web user interface via a web browser by opening the following URL: http://Phone_IP_address/

On a brand new or a freshly factory re-set phone you will see the following page

Make sure you set

  1. Administrator password (needs to be confirmed!)
  2. HTTP Server User and Password (WebUI)
  3. Hidden Tags to on

And click on the button Press to save the settings as shown above!

The most important security measures are taken. In addition you can follow the steps below to add additional security.

On existing phones from the left hand menu select "Advanced" and the "QoS/Security".

Scroll down to the "HTTP Server" section and provide a username and a password. Select the Digest authentication scheme.

Confirm your changes with "Apply". These credentials will now be used to access the phone user interface.

NOTE: If you use remote provisioning and do not necessarily require access to the web user interface you can disable the Web User Interface within your provisioning using [this] setting in order to harden your phone even more.

Step 2: Disable Admin Mode and change the admin mode password

Most users do not require the full functionality of neither the phone web user interface nor the phone menu. In order to prevent normal users from modifying please disable the admin mode on the phone. And change the Admin mode password from the "QoS/Security" Tab please modify the following settings.

Step 3: Set the web server to HTTPS only type

From the Advanced section select the "Network" tab. Scroll down to the HTTP Section. Set the "Webserver connection type" to "https only".

Click "Apply" on the bottom of the page to apply the settings.

NOTE: once you press "Apply" the web user interface will no longer be available via http://ip_address_of_phone/ but via https://ip_address_of_phone/

Step 4: Setup a PIN code and keyboard locking to prevent physical abuse

On the left hand side select the "Preferences" section. Scroll down to "Lock Keyboard"and setup a Keypad Lock.

Any questions?

If you have any questions about security of snom phones please contact security@snom.com

Personal tools
Interoperability