[cisco-voip] Hardware Tokens/Secure Cluster

Matthew Loraditch MLoraditch at heliontechnologies.com
Tue Aug 29 10:02:52 EDT 2017


Ok yes, I’m starting to understand this.

I’m also looking for guidance re CUACA and UCCX.
I’m struggling trying to find where the instructions are for either of them.

Matthew G. Loraditch – CCNP-Voice, CCNA-R&S, CCDA
Network Engineer
Direct Voice: 443.541.1518

Facebook<https://www.facebook.com/heliontech?ref=hl> | Twitter<https://twitter.com/HelionTech> | LinkedIn<https://www.linkedin.com/company/helion-technologies?trk=top_nav_home> | G+<https://plus.google.com/+Heliontechnologies/posts>

From: bmeade90 at gmail.com [mailto:bmeade90 at gmail.com] On Behalf Of Brian Meade
Sent: Tuesday, August 29, 2017 9:19 AM
To: Matthew Loraditch <MLoraditch at heliontechnologies.com>
Cc: cisco-voip at puck.nether.net
Subject: Re: [cisco-voip] Hardware Tokens/Secure Cluster

You can use self-signed certificates now instead with the command-line tools.  There's still some hardware tokens if you'd rather have something physical rather than worrying about backing up the certificates.

You can just run "utils ctl set-cluster mixed-mode" and then restart CallManager/TFTP on all nodes if you want to use self-signed certs.

Here's the 10.x security guide- https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/security/10_0_1/secugd/CUCM_BK_C68276B4_00_cucm-security-guide-100/CUCM_BK_C68276B4_00_cucm-security-guide-100_chapter_0100.html

On Mon, Aug 28, 2017 at 8:25 PM, Matthew Loraditch <MLoraditch at heliontechnologies.com<mailto:MLoraditch at heliontechnologies.com>> wrote:
We have a client who is requesting a secure cluster. Never done it before. Do those hardware tokens still exist? It appears not and it’s all software based now?
Any fantastic blogs or step by step guides that folks have used? The documentation is refreshingly mind numbing.

Thanks!
-Matthew

_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net<mailto:cisco-voip at puck.nether.net>
https://puck.nether.net/mailman/listinfo/cisco-voip

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20170829/efb0f7ce/attachment.html>


More information about the cisco-voip mailing list