This document provides an overview of each of these functions. Certificate verification for phone-initiated HTTPS connections that use a remote certificate trust store on CUCM (TVS).Optional encryption of TFTP configuration files that use a signing key.Default authentication of TFTP downloaded files (configuration, locale, ringlist) that use a signing key.SBD provides these three functions for supported IP phones: For full technical details of each function, see the SBD Detail and Troubleshooting Information section. This section provides a quick overview of exactly what SBD provides. It is a good idea to become familiar with these core concepts of SBD: Asymmetric Key Cryptography Wikipedia article and Public Key Infrastructure Wikipedia article. This document serves as a supplement to the official Security By Default documents, and provides operational information and troubleshooting tips to help administrators and ease the troubleshooting process. There is a trade-off between security and ease of use/ease of administration that administrators must be aware of before they make certain changes to a Version 8.0 CUCM cluster. Background InformationĬUCM Version 8.0 and later introduces the SBD feature, which consists of Identity Trust List (ITL) files and the Trust Verification Service (TVS).Įvery CUCM cluster now uses ITL-based security automatically. This document describes the Security By Default (SBD) feature of Cisco Unified Communications Manager (CUCM) Versions 8.0 and later.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |