[cisco-voip] security by default notes in 8.6.2 notes

Paul asobihoudai at yahoo.com
Wed Sep 14 23:12:54 EDT 2011





http://tinyurl.com/5rfzf7k

lots of material written underneath the proxy TFTP section. . .

Registering Problems For Phones With Security By Default (SBD) Loads For Previous Versions of Cisco Unified Communications Manager 8.0

For remote cluster TFTP servers running on Cisco Unified Communications Manager 8.0 and later, the phones with Security By Default (SBD) loads can register to these remote cluster Unified CMs through a proxy TFTP server. However, the Identity Trust List (ITL) file is unavailable in previous versions of Unified CM earlier than 8.0. Therefore, for the remote cluster TFTP servers running a pre-8.0 version of Unified CM, the phones with SBD loads are unable to register to the remote cluster Unified CMs through a proxy TFTP server.

To overcome this issue, perform the following steps:

Procedure

Step 1    Connect the endpoint directly to the remote cluster Unified CM by taking the following actions:

a.    Disable the DHCP option.

a.    Enter the TFTP IP address on the phone manually.

The phone gets the required SBD load and registers to the Unified CM.

Step 2    Enable the DHCP option and reset the phone manually.

The phone gets registered to the remote cluster through proxy TFTP.


Note    This procedure is applicable only if you have new phones with SBD load or if you plan to move the phones from a Unified CM with SBD support to a Unified CM without SBD support. This procedure is not applicable if the number of phones in a cluster is large.



More information about the cisco-voip mailing list