| 1. |
E To configure a Cisco CallManager cluster for security, first enable services, then use the CTL Client to set cluster to mixed mode and create a signed CTL. Finally, deploy the certificates to the IP Phones and set the device security mode through the CallManager Administration. |
| 2. |
A and C You must enable both the Cisco CAPF and CTL Provider when configuring a Cisco CallManager cluster for security. |
| 3. |
A At a minimum, the Cisco CTL Client requires the Windows 2000 operating system, and at least one USB port, Smart Card service enabled. It does also function on the Windows XP operating system. |
| 4. |
A Upgrading an LSC on a Cisco IP Phone can be done through the CallManager Administration utility without updating the CTL using the Cisco CTL Client. |
| 5. |
A and F These answers show the valid security configuration options of the Cisco IP Phone through the CallManager Administration. |
| 6. |
C and D When a phone configured for authentication calls a nonsecure phone, the resulting call will negotiate to the lowest-common-denominator, which is nonsecure. Likewise, when a phone configured for encryption calls a phone configured for authentication, the resulting call will negotiate to the lowest-common-denominator, which is authentication. |
| 7. |
C and D You can generate a query using the device name through the Find and List Phones window. The certificate lifetime is not a searchable field. |
| 8. |
A and E You can query based on both the authentication mode and device security mode from the Find and List Phones window. |
| 9. |
A The Cisco 7920 Wireless IP Phone does not support the phone security features. |
| 10. |
B, C, and D All of these communication types cannot be encrypted using phone security. In addition, calls streaming music on hold (MOH) cannot be secured. |