Authentication and Encryption Configuration Overview

Cisco CallManager Release 4.0 and later releases support authentication and encryption in a Cisco CallManager cluster. By using these features, you can secure the following communication methods:

With the current release of Cisco CallManager, authenticated and encrypted calls are not possible in any other situation than listed, including the following:

To enable authentication and encryption support in your Cisco CallManager cluster, you need to complete these tasks:

Step 1.

Enable security services You need to enable the Cisco Certificate Trust List (CTL) Provider service and the Cisco Certificate Authority Proxy Function (CAPF) service.

 

Step 2.

Use the Cisco CTL client to activate security options You need to configure mixed mode and create a signed CTL.

 

   

Step 3.

Configure devices for security IP Phones need to have certificates (either manufacturing installed certificates [MICs] or locally significant certificates [LSCs]), they have to be configured for a security mode (authenticated or encrypted), and the CAPF parameters have to be set if LSCs are used.

 

Enabling Services Required for Security

Категории