Poly Phones

Poly Phones #

New Poly phones should automatically provision if they have been added to ~.Dimensions.~. If adding a phone which has been used on another platform, it may need to be reset using the instructions below.

Defaulting a Poly Phone - Password Known #

If you know a phone's admin password, you can reset the phone to factory defaults through the on screen menus.

  1. Press the 'Menu/Home' Key
  2. Select 'Settings'
  3. Select 'Advanced' from the menu and enter the admin password for the phone
  4. Select 'Administration Settings'
  5. Select 'Reset to Defaults'
  6. Select 'Reset to Factory'
  7. Select 'Yes for Are you Sure'

Once these steps have been completed, the phone should reboot, allowing the normal automatic provisioning process to be followed.

Defaulting a Poly Phone - Password Not Known #

If you do not know a phone's admin password or you are provisioning a phone that has previously been used on a different platform, you will need to reset the phone to factory defaults.

  1. Reboot the phone and wait for the starting application.

  2. While the phone is in the starting application, wait for the cancel button to appear then press it.

  3. The phone will show a 7 seconds count down. This is the only open window to press the key combination to go to the hard reset page.

    • VVX series (VVX300, 301, 310, 311, etc): Press and hold 1 3 5 within the 7-second count down, continue to hold until it prompts you to the password page
    • Sound Point IP 335: Press and hold 1 3 5 7 within the 7-second count down, continue to hold until it prompts you to the password page
    • Sound Point IP series (IP550, IP560, IP570, etc): Press and hold 4 6 8* within the 7-second count down, continue to hold until it prompts you to the password page
    • Conference Phone IP5000, IP6000, IP7000: Press and hold 1 3 5 7 within the 7-second count down, continue to hold until it prompts you to the password page

  4. Enter the device's MAC ID as the password (e.g 64167F28619C).

    • Press the 2nd soft key that corresponds to the mode or (encoding) to change it to A->ABC or 1->123 (Enter the characters in upper case)
    • Then (for example) to select the letter F, press the 3 key three times.

Once these steps have been completed, the phone should reboot, allowing the normal automatic provisioning process to be followed.

Enable ZTP Server #

If your phone's firmware version is between 3.3.2 and 4.0.8, you need to manually enable Poly ZTP (Zero-Touch Provisioning). If a new or defaulted phone does not seem to be provisioning on ~.Dimensions.~, follow the steps below to ensure the ZTP feature is enabled.

  1. Press the 'Menu/Home' key on the phone
  2. Use the cursor to navigate and select 'Settings'
  3. Select 'Advanced' from the menu and enter the admin password for the phone (Poly default: 456, ~.Dimensions.~ default: 35791)
  4. Select 'Administration Settings -> Network Configuration -> Provisioning Server'
  5. Enable 'Poly ZTP' and 'Polycom ZTP'
  6. Press 'Back' twice and then select 'Save Config'

Reboot the phone if it does not do it automatically. If it has been configured on the ~.Dimensions.~ portal and has been assigned to a customer/user, it will download its configuration.

Information Circle info

During this process the phone may perform a firmware update.

Manual Provisioning #

If there are problems with the Poly Zero-Touch provisioning service or the phone does not have network access to it, you may need to provide the details to the phone manually on how to talk to the ~.Dimensions.~ system.

To complete manual provisioning, you will need the phone's unique provisioning username/password combination from the Device Configuration area.

Log into the phone's web UI and navigate to the 'Settings\Provisioning Server' section.

Screenshot

Ensure the Server Type is set to 'HTTPS' and then populate the following options and save the settings down to complete the provisioning process:

  • Server URL
  • Username
  • Password

Information Circle info

Once provided, the phone should query the required configuration and reboot as required.

802.1x #

Supported 802.1x Types:

  • EAP-TLS
  • EAP-MD5
  • EAP-PEAP/MSCHAPv2

EAP-TLS

For EAP-TLS support, the certificates/keys need to be hosted where they can be accessed by URL for the Poly phones to download.

Provide URLs for each of the certificates and private keys required in the configuration.

Example

Here is an example of the fields that should be configured in the ~.Dimensions.~ portal for Poly phones.

~.Dimensions.~ Config Poly Config Notes
Identity device.net.dot1x.identity Enter a user name required for 802.1X authentication. The minimum length is 6 characters.
Root / Intermediate Certificate device.sec.TLS.customCaCert2 Enter the URL of a CA certificate in PEM format.
Private Key device.sec.TLS.customDeviceCert2.privateKey A device certificate installed on the phone to be used for MTLS authentication.
Local Certificate device.sec.TLS.profile.deviceCert2
device.sec.TLS.customDeviceCert2.publicCert		 A device certificate installed on the phone to be used for MTLS authentication.

Information Circle info

TLS Platform Profile 2 is used to store the certs configured. The minimum TLS level is also set to 1.2. In addition, the follow settings are passed to the phone:

  • sec.dot1x.eapollogoff.enabled = 1
  • sec.dot1x.eapollogoff.lanlinkreset = 1

Hand Left warning

When providing the PEM format certificate, do not include the -----BEGIN CERTIFICATE-----/-----END CERTIFICATE----- or -----BEGIN PRIVATE KEY-----/-----END PRIVATE KEY----- lines. Just provide the encoded certificate.

For more information, check the Poly Administrator Guide.

EAP-PEAP/MSCHAPv2

For EAP-TLS support, the certificates/keys need to be hosted where they can be accessed by URL for the Poly phones to download.

Provide URLs for each of the certificates and private keys required in the configuration.

Example

Here is an example of the fields that should be configured in the ~.Dimensions.~ portal for Yealink phones.

~.Dimensions.~ Config Poly Config Notes
Identity device.net.dot1x.identity Enter a user name required for 802.1X authentication. The minimum length is 6 characters.
Password device.net.dot1x.password Enter a password required for 802.1X authentication. The minimum length is 6 characters.
Root / Intermediate Certificate device.sec.TLS.customCaCert2 Enter the contents of a CA certificate in PEM format.

Information Circle info

TLS Platform Profile 2 is used to store the certs configured. The minimum TLS level is also set to 1.2. In addition, the follow settings are passed to the phone:

  • sec.dot1x.eapollogoff.enabled = 1
  • sec.dot1x.eapollogoff.lanlinkreset = 1

Hand Left warning

When providing the PEM format certificate, do not include the -----BEGIN CERTIFICATE-----/-----END CERTIFICATE----- or -----BEGIN PRIVATE KEY-----/-----END PRIVATE KEY----- lines. Just provide the encoded certificate.

For more information, check the Poly Administrator Guide.

EAP-MD5

For EAP-MD5 support, populate the 'Identity' and 'Password' fields in the phone's configuration or customer-wide configuration.

Custom Configuration Files #

The addition of custom configuration files is supported for Poly phones. The configurations are entered in a simple key/value pair, with an equals sign separating them. In addition, the configuration items need to be wrapped in XML.

The example below shows how to disable the Live Dialpad feature (remember to enter each configuration item on a separate line):

```
<item 
dialplan.liveDialpad="0" 
/>

```

Information Circle info

For details of all the configuration options available, refer to the Mitel 68xx Administrator Guide. Alternatively, through a phone's web interface, configure the item required and then download the local.cfg file from the phone (on the Troubleshooting page). In this file you will be able to see how the configuration item is formatted.