Author Topic: 5304 Phone Security  (Read 1736 times)

Offline ralph

  • Mitel Forums Admin
  • Hero Member
  • *****
  • Posts: 5767
  • Country: us
  • Karma: +469/-0
  • Published Author: http://amzn.to/2dcYSY5
    • View Profile
5304 Phone Security
« on: March 21, 2015, 11:43:56 AM »
We have a 5404 phone we want to use in a lobby external to the main company floor.
This will be generally accessible to the public so we want to secure the network.
The current plan is to loc the data switch port so that only the MAC address of the phone will work on that port.
Here's the problem:
MAC addresses can be spoofed.
If you boot the phone holding the 9 and get into config then you can see the MAC address of the  phone and the IP address of the PBX server.
Does anyone know if it's possible to loc the config of the phone via password or pin so that in order to see any of that info you need to at least know the PIN?

Ralph
« Last Edit: March 21, 2015, 03:50:28 PM by ralph »


Offline marcolive

  • Full Member
  • ***
  • Posts: 131
  • Karma: +2/-0
    • View Profile
Re: 5304 Phone Security
« Reply #1 on: March 21, 2015, 02:37:50 PM »
No...
I think the best way would be to configure 802.1x for this switch port.
.... or to hire a security officer for this building!  ;D
« Last Edit: March 21, 2015, 03:50:40 PM by ralph »

Offline ralph

  • Mitel Forums Admin
  • Hero Member
  • *****
  • Posts: 5767
  • Country: us
  • Karma: +469/-0
  • Published Author: http://amzn.to/2dcYSY5
    • View Profile
Re: 5304 Phone Security
« Reply #2 on: March 21, 2015, 03:49:01 PM »
There's lots of security for this building.
Card in/out, guards, Former East German Shot Put women, etc.

The solution so far is MAC address security, it's in it's own DMZ.
Can only reach the two registered controllers and the local voice network.

Ralph
« Last Edit: March 21, 2015, 03:50:51 PM by ralph »


 

Sitemap 1 2 3 4 5 6 7 8 9 10