[cisco-voip] CallManager 4.1(3) and Encryption/Authentication
forIP Phones
Andrew Dignan
andy at dignans.com
Sat Dec 3 22:54:13 EST 2005
The install guide says that you need two Security Tokens (USB Keys) the
first time you configure the CTL Client. If I want to install multiple
CTL Clients in a cluster, do I need 2 per client or can I use the same two
usb keys for each CTL Client? If I do only have one CTL client (if its
installed on the publisher for example) what issues will I run into if the
CTL Client server is offline? Will reset phones not be able to register
to the subscriber? What other issues might I run into?
tia,
andy
> Well, there's also the gateways to consider, and if memory serves (I could
> be wrong), if security is on, it's on for gateways globally. There's
> always
> mixed mode so secure and non-secure devices can both register, but I've
> not
> played with it so I cannot vouch for how well it works :-)
>
> -----Original Message-----
> From: Andrew Dignan [mailto:andy at dignans.com]
> Sent: Friday, December 02, 2005 10:14 PM
> To: Philip Walenta
> Cc: andy at dignans.com; cisco-voip at puck.nether.net
> Subject: RE: [cisco-voip] CallManager 4.1(3) and Encryption/Authentication
> forIP Phones
>
> They aren't and understand that CTI Apps do not support it. However,
> wouldn't you be able to configure the Agent phones as "non-secure" and be
> able to use encryption but just not to agent phones?
>
>> Well, let's hope this customer isn't going to run IPCC (either flavor)
>> as neither support media encryption.
>>
>> Other than that I've deployed it for one small customer (about 50
>> phones) and I didn't see any real hassle with it.
>>
>> -----Original Message-----
>> From: cisco-voip-bounces at puck.nether.net
>> [mailto:cisco-voip-bounces at puck.nether.net] On Behalf Of Andrew Dignan
>> Sent: Friday, December 02, 2005 4:31 PM
>> To: cisco-voip at puck.nether.net
>> Subject: [cisco-voip] CallManager 4.1(3) and Encryption/Authentication
>> for IP Phones
>>
>> I understand all the drawbacks/limitatations to setting this up but I
>> was just curious to see if anyone out there has deployed this and if
>> its been stable. I am doing my best to convince the customer
>> otherwise because it just scares me that the fundamental operations of
>> call setup/signalling and registration is so different. That being
>> said I may still end up having to deploy it and atleast if its being
>> widely deployed and its stable I will be able to sleep better.
>>
>> TIA,
>>
>> Andy
>> _______________________________________________
>> cisco-voip mailing list
>> cisco-voip at puck.nether.net
>> https://puck.nether.net/mailman/listinfo/cisco-voip
>>
>>
>
>
More information about the cisco-voip
mailing list