Leaflet
Creating a security profile
If you want to setup the CUCM for encrypted calls, follow the steps below:
CUCM must operate in mixed mode (cluster security mode) to enable
secure (encrypted) communication.
You must define one device security profile for each endpoint type,
and if you want to allow several authentication modes for the same
endpoint type, you must define one profile for each mode.
1. Navigate to: System > Security > Phone Security Profile
2. Use the search options available on the page to locate the file.
3. You may Copy an existing profile or choose Add New.
4. Navigate to the Phone Security Profile Information section:
Name: Enter a name of the profile.
Description: Enter a description (optional).
Device Security Mode: Set to Encrypted.
Transport Type: Set to TLS.
5. Navigate to the Phone Security Profile CAPF Information section:
Authentication Mode: Choose a value from the drop down list.
By Null String: The Certificate Authority Proxy Function (CAPF)
process will start automatically.
By Authentication String: The CAPF process will commence when
the correct authentication code is received from the endpoint.
By Existing Certificate (precedence to LSC/MIC): This option can
only be used when a Locally Significant Certificate (LSC) is already
stored on the endpoint, i.e. it cannot be used the first time the CAPF
process runs.
Key-size: Choose the appropriate value from the drop down list.
Click Save.
How to create a security profile
Log in to Cisco Unified CM Administration and navigate to System > Security > Phone Security Profile
3
4
2
Phone Security Profile
1
System
Security
5
Bytte bilder til MX300
Cisco TelePresence Endpoints running TC6 and Cisco Unified Communications Manager 9.0 Quick Reference Guide
D14996.01 Administering TC6 Endpoints on CUCM 9.0, January 2013. www.cisco.com — Copyright © 2013 Cisco Systems, Inc. All rights reserved.
17
Contents
Introduction
Endpoint configuration
CUCM configuration
Setting passwords
Appendices
CUCM configuration