<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:Helvetica;
panose-1:2 11 6 4 2 2 2 2 2 4;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Verdana;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
h2
{mso-style-priority:9;
mso-style-link:"Heading 2 Char";
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:18.0pt;
font-family:"Times New Roman","serif";
font-weight:bold;}
h3
{mso-style-priority:9;
mso-style-link:"Heading 3 Char";
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:13.5pt;
font-family:"Times New Roman","serif";
font-weight:bold;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
code
{mso-style-priority:99;
font-family:"Courier New";}
span.Heading2Char
{mso-style-name:"Heading 2 Char";
mso-style-priority:9;
mso-style-link:"Heading 2";
font-family:"Calibri Light","sans-serif";
color:#2E74B5;}
span.Heading3Char
{mso-style-name:"Heading 3 Char";
mso-style-priority:9;
mso-style-link:"Heading 3";
font-family:"Calibri Light","sans-serif";
color:#1F4D78;}
span.EmailStyle22
{mso-style-type:personal-reply;
font-family:"Arial","sans-serif";
color:#44546A;
font-weight:normal;
font-style:normal;
text-decoration:none none;}
p.pb1body1, li.pb1body1, div.pb1body1
{mso-style-name:pb1_body1;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri","sans-serif";}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple><div class=WordSection1><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'>Florian –<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'> Thank you Florian !<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal style='text-indent:.5in'><span style='font-family:"Arial","sans-serif";color:#44546A'>So much for reading the Cisco Documentation.<o:p></o:p></span></p><p class=MsoNormal style='text-indent:.5in'><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal style='margin-left:.5in'><span style='font-family:"Arial","sans-serif";color:#44546A'>The Cisco documentation indicates that this is an optional configuration and is used to restrict the number of connections to the database and to make it more secure.<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'> At this point, I was not worried about security, I was just trying to get it to connect – so I did not worry about it<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'> However, after your last email, I went ahead and did it anyway.<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'> I found the hba file and modified it to include the following lines:<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'> <o:p></o:p></span></p><table class=MsoNormalTable border=0 cellspacing=0 cellpadding=0 width="80%" style='width:80.0%'><tr><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-size:10.0pt;font-family:"Courier New"'>host</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a name=wp1057113></a><span style='font-size:10.0pt;font-family:"Courier New"'>tcmadb</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a name=wp1057115></a><span style='font-size:10.0pt;font-family:"Courier New"'>tcuser</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a name=wp1057117></a><span style='font-size:10.0pt;font-family:"Courier New"'>10.89.99.0/24</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a name=wp1057119></a><span style='font-size:10.0pt;font-family:"Courier New"'>password</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td></tr><tr><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a name=wp1057121></a><span style='font-size:10.0pt;font-family:"Courier New"'>host</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a name=wp1057123></a><span style='font-size:10.0pt;font-family:"Courier New"'>dbinst</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a name=wp1057125></a><span style='font-size:10.0pt;font-family:"Courier New"'>mauser</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a name=wp1057127></a><span style='font-size:10.0pt;font-family:"Courier New"'>10.89.99.0/24</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a name=wp1057129></a><span style='font-size:10.0pt;font-family:"Courier New"'>password</span><span style='font-size:9.0pt;font-family:"Arial","sans-serif"'> <o:p></o:p></span></p></td></tr></table><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'> I then stopped and restart the Postgre service.<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'> I ran the CUPS troubleshooter and it indicates all green as well as the external database status.<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'>Thanks again!<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'>Jeff<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Arial","sans-serif";color:#44546A'><o:p> </o:p></span></p><p class=MsoNormal><b><span style='font-size:11.0pt;font-family:"Calibri","sans-serif"'>From:</span></b><span style='font-size:11.0pt;font-family:"Calibri","sans-serif"'> Florian Kroessbacher [mailto:florian.kroessbacher@gmail.com] <br><b>Sent:</b> Thursday, March 20, 2014 2:06 PM<br><b>To:</b> Jeffrey Girard<br><b>Subject:</b> Re: [cisco-voip] Instructions on installing/configuring PostgreSQL on Windows for Presence and IM?<o:p></o:p></span></p><p class=MsoNormal><o:p> </o:p></p><div><div><p class=MsoNormal><span style='font-family:"Verdana","sans-serif"'>The Settings are on the Windows Site as well, the Files are located at i think<o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-family:"Verdana","sans-serif"'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-family:"Verdana","sans-serif"'>Program Files(x86)\PostgreSQL\...<o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-family:"Verdana","sans-serif"'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-family:"Verdana","sans-serif"'>And must be made on Windows as well, because this is how PostGRE is working<o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-family:"Verdana","sans-serif"'>neither Windows or .nix<o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-family:"Verdana","sans-serif"'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-family:"Verdana","sans-serif"'>cheers<o:p></o:p></span></p></div></div><div><p class=MsoNormal><br clear=all><o:p></o:p></p><div><p class=MsoNormal>Florian Kroessbacher<br><br>gmail: <a href="mailto:florian.kroessbacher@gmail.com" target="_blank">florian.kroessbacher@gmail.com</a><o:p></o:p></p></div><p class=MsoNormal style='margin-bottom:12.0pt'><o:p> </o:p></p><div><p class=MsoNormal>2014-03-20 18:42 GMT+01:00 Jeffrey Girard <<a href="mailto:jeffrey.girard@girardinc.com" target="_blank">jeffrey.girard@girardinc.com</a>>:<o:p></o:p></p><blockquote style='border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in'><div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'>Florian –</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> No, I have not made any configuration changes to the hba.conf file.</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> First, as I said, Im using a Windows install, not a *nix. Those instructions are not for windows installs.</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> Second, those settings are to restrict access to the external database. At this point, I don’t want to restrict anything, as I am unable to make a connection to the database</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'>Jeff</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><b><span style='font-size:11.0pt;font-family:"Calibri","sans-serif"'>From:</span></b><span style='font-size:11.0pt;font-family:"Calibri","sans-serif"'> Florian Kroessbacher [mailto:<a href="mailto:florian.kroessbacher@gmail.com" target="_blank">florian.kroessbacher@gmail.com</a>] <br><b>Sent:</b> Thursday, March 20, 2014 12:42 PM<br><b>To:</b> Jeffrey Girard</span><o:p></o:p></p><div><p class=MsoNormal><br><b>Subject:</b> Re: [cisco-voip] Instructions on installing/configuring PostgreSQL on Windows for Presence and IM?<o:p></o:p></p></div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>hy i mean that from the pdf<o:p></o:p></p><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p></div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><a href="http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cups/8_0/english/install_upgrade/database/guide/CUPDBSetup/Preparing_database_setup.html" target="_blank">http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cups/8_0/english/install_upgrade/database/guide/CUPDBSetup/Preparing_database_setup.html</a><o:p></o:p></p><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p></div><div><div><h2>About Security Recommendations for the External Database<o:p></o:p></h2></div><p style='mso-margin-top-alt:5.0pt;margin-right:0in;margin-bottom:5.25pt;margin-left:.25in'><a name="144e099629ddc9bd_wp1055384"></a>•<span style='border:solid windowtext 1.0pt;padding:0in'><img border=0 width=19 height=2 id="_x0000_i1025" src="cid:image001.jpg@01CF444A.D9360AE0" alt="Image removed by sender."></span><a href="http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cups/8_0/english/install_upgrade/database/guide/CUPDBSetup/Preparing_database_setup.html#wp1055358" target="_blank">Connection to the External Database</a><o:p></o:p></p><p style='mso-margin-top-alt:5.0pt;margin-right:0in;margin-bottom:5.25pt;margin-left:.25in'><a name="144e099629ddc9bd_wp1055592"></a>•<span style='border:solid windowtext 1.0pt;padding:0in'><img border=0 width=19 height=2 id="_x0000_i1026" src="cid:image001.jpg@01CF444A.D9360AE0" alt="Image removed by sender."></span><a href="http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cups/8_0/english/install_upgrade/database/guide/CUPDBSetup/Preparing_database_setup.html#wp1055626" target="_blank">Restriction of User Access to the Database</a> (Recommended)<o:p></o:p></p><p style='mso-margin-top-alt:5.0pt;margin-right:0in;margin-bottom:5.25pt;margin-left:.25in'><a name="144e099629ddc9bd_wp1056215"></a>•<span style='border:solid windowtext 1.0pt;padding:0in'><img border=0 width=19 height=2 id="_x0000_i1027" src="cid:image001.jpg@01CF444A.D9360AE0" alt="Image removed by sender."></span><a href="http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cups/8_0/english/install_upgrade/database/guide/CUPDBSetup/Preparing_database_setup.html#wp1056168" target="_blank">Limiting the Maximum Connections to the Database</a> (Optional)<o:p></o:p></p><p style='mso-margin-top-alt:5.0pt;margin-right:0in;margin-bottom:5.25pt;margin-left:.25in'><a name="144e099629ddc9bd_wp1056244"></a>•<span style='border:solid windowtext 1.0pt;padding:0in'><img border=0 width=19 height=2 id="_x0000_i1028" src="cid:image001.jpg@01CF444A.D9360AE0" alt="Image removed by sender."></span><a href="http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cups/8_0/english/install_upgrade/database/guide/CUPDBSetup/Preparing_database_setup.html#wp1056160" target="_blank">Default Listener Port Configuration</a> (Optional)<o:p></o:p></p><div><h3><a name="144e099629ddc9bd_Connection_to_the_Exter"></a><a name="144e099629ddc9bd_wp1055358"></a><a name="144e099629ddc9bd_wpxref14636"></a>Connection to the External Database<o:p></o:p></h3><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055369"></a>Cisco Unified Presence does <em>not</em> provide a secure TLS/SSL connection to the external database. We recommend that you consider this security limitation when you plan your Cisco Unified Presence deployment, and consider the security recommendations we provide in this topic.<o:p></o:p></p><h3><a name="144e099629ddc9bd_Restriction_of_User_Acc"></a><a name="144e099629ddc9bd_wp1055626"></a><a name="144e099629ddc9bd_wpxref81826"></a>Restriction of User Access to the Database<o:p></o:p></h3><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055573"></a>We strongly recommend that you restrict user access to the external database to only the particular user and database instance that Cisco Unified Presence uses. You can restrict user access to the PostgreSQL database in the <b>pg_hba.conf</b> file located in the <b><install_dir>/data</b> directory.<o:p></o:p></p></div><div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p></div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='border:solid windowtext 1.0pt;padding:0in'><img border=0 width=100 height=100 id="_x0000_i1029" src="cid:image004.jpg@01CF444A.D9360AE0" alt="Image removed by sender."></span><o:p></o:p></p></div></div><div style='margin-top:3.75pt'><div class=MsoNormal align=center style='text-align:center'><hr size=3 width="100%" align=center></div></div><div style='margin-left:3.75pt'><p class=MsoNormal style='margin-top:3.75pt;mso-margin-bottom-alt:auto'><a name="144e099629ddc9bd_wp1055639"></a><b>Caution </b><span style='border:solid windowtext 1.0pt;padding:0in'><img border=0 width=6 height=2 id="_x0000_i1031" src="cid:image005.jpg@01CF444A.D9360AE0" alt="Image removed by sender."></span>Do not configure 'all' for the user and database entries because potentially this could allow <em>any</em> user access to <em>any</em> database.<o:p></o:p></p></div><div><div style='margin-top:3.75pt'><div class=MsoNormal align=center style='text-align:center'><hr size=3 width="100%" align=center></div></div><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055806"></a>When you configure user access to the external database, we also recommend that you configure password protection for the database access using the 'password' method.<o:p></o:p></p></div><div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p></div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='border:solid windowtext 1.0pt;padding:0in'><img border=0 width=100 height=100 id="_x0000_i1033" src="cid:image004.jpg@01CF444A.D9360AE0" alt="Image removed by sender."></span><o:p></o:p></p></div></div><div style='margin-top:3.75pt'><div class=MsoNormal align=right style='text-align:right'><hr size=3 width="100%" align=right></div></div><p style='margin-bottom:2.25pt'><a name="144e099629ddc9bd_wp1058019"></a><b>Note </b><span style='border:solid windowtext 1.0pt;padding:0in'><img border=0 width=1 height=2 id="_x0000_i1035" src="cid:image006.jpg@01CF444A.D9360AE0" alt="Image removed by sender."></span>You are required to enter a password for the database user when you configure a database entry on Cisco Unified Presence.<o:p></o:p></p><div><div><div style='margin-top:3.75pt'><div class=MsoNormal align=right style='text-align:right'><hr size=3 width="100%" align=right></div></div><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055872"></a>The following are examples of a secure user access configuration, and a less secure user access configuration, in the <b>pg_hba.conf</b> file.<o:p></o:p></p><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055707"></a>Example of a secure configuration:<o:p></o:p></p><table class=MsoNormalTable border=0 cellspacing=0 cellpadding=0 width="80%" style='width:80.0%'><tr><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055896"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'># TYPE</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055898"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>DATABASE</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055900"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>USER</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055902"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>CIDR-ADDRESS</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055904"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>METHOD</span></code><o:p></o:p></p></td></tr><tr><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055906"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>host</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055908"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>dbinst1</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055910"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>tcuser1</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055912"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'><a href="http://10.89.99.0/24" target="_blank">10.89.99.0/24</a></span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055914"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>password</span></code><o:p></o:p></p></td></tr><tr><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055916"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>host</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055918"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>dbinst2</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055920"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>mauser1</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055922"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'><a href="http://10.89.99.0/24" target="_blank">10.89.99.0/24</a></span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055924"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>password</span></code><o:p></o:p></p></td></tr></table><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055712"></a>Example of a <em>less</em> secure configuration:<o:p></o:p></p><table class=MsoNormalTable border=0 cellspacing=0 cellpadding=0 width="80%" style='width:80.0%'><tr><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055984"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'># TYPE</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055986"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>DATABASE</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055988"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>USER</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055990"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>CIDR-ADDRESS</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055992"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>METHOD</span></code><o:p></o:p></p></td></tr><tr><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055994"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>host</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055996"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>dbinst1</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1055998"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>tcuser1</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1056000"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'><a href="http://10.89.99.0/24" target="_blank">10.89.99.0/24</a></span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1056002"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>trust</span></code><o:p></o:p></p></td></tr><tr><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1056004"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>host</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1056006"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>dbinst2</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1056008"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>all</span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1056010"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'><a href="http://10.89.99.0/24" target="_blank">10.89.99.0/24</a></span></code><o:p></o:p></p></td><td valign=top style='padding:1.8pt 1.8pt 1.8pt 1.8pt'><p style='margin-bottom:4.5pt'><a name="144e099629ddc9bd_wp1056012"></a><code><span style='font-size:10.0pt;font-family:"Helvetica","sans-serif"'>passwo</span></code><code><span style='font-size:9.0pt'>rd</span></code><o:p></o:p></p></td></tr></table><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><br>Am Donnerstag, 20. März 2014 schrieb Jeffrey Girard :<o:p></o:p></p><blockquote style='border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-top:5.0pt;margin-right:0in;margin-bottom:5.0pt'><div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'>Florian –</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> Thanks for the response.</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> Yes, I have already turned off the firewall completely</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> No, I have not done any config in the hba.conf - I don’t know what that is or where its located</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#1F497D'>------------------------------------------------------------------------------------</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#1F497D'>Dr. Jeffrey T. Girard (Jeff), PhD</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#1F497D'>Colonel, United States Army (Retired)</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#1F497D'>Senior Network Engineer / VoIP Engineer - WireMeHappy.com</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#1F497D'>reply to: <a href="mailto:jeffrey.girard@wiremehappy.com">jeffrey.girard@wiremehappy.com</a></span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#1F497D'>(607)835-0406 (home office)</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#1F497D'>(845)764-1661 (mobile)</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#1F497D'>(607)835-0458 (fax)</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:"Arial","sans-serif";color:#44546A'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><b><span style='font-size:11.0pt;font-family:"Calibri","sans-serif"'>From:</span></b><span style='font-size:11.0pt;font-family:"Calibri","sans-serif"'> Florian Kroessbacher [<a href="mailto:florian.kroessbacher@gmail.com">mailto:florian.kroessbacher@gmail.com</a>] <br><b>Sent:</b> Thursday, March 20, 2014 12:26 PM<br><b>To:</b> Jeffrey Girard<br><b>Cc:</b> <a href="mailto:cisco-voip@puck.nether.net">cisco-voip@puck.nether.net</a><br><b>Subject:</b> Re: [cisco-voip] Instructions on installing/configuring PostgreSQL on Windows for Presence and IM?</span><o:p></o:p></p><p> <o:p></o:p></p><p>hy<o:p></o:p></p><div><p> <o:p></o:p></p></div><div><p>have u checked the local fw on the windows server for inbound connection from the presence server.<o:p></o:p></p></div><div><p> <o:p></o:p></p></div><div><p>have u done the config in the hba.conf and so on<br><br>Am Donnerstag, 20. März 2014 schrieb Jeffrey Girard :<o:p></o:p></p><blockquote style='border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-top:5.0pt;margin-right:0in;margin-bottom:5.0pt'><div><div><p><span style='font-family:"Arial","sans-serif"'>I have searched the Cisco site and there are tons of documents on how to configure the database for *nix installs. I, unfortunately, am not skilled in that arena.</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>I have downloaded and installed PostgreSQL on a Win2k8R2 server.</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>I tried to interpret the Cisco doc instructions as best I could</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>I have created a new database called tcmadb</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>I have created a new entity under Login Roles called tcuser and gave that user superadmin rights</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>I went back to the tcmadb database and made the tcuser the owner of the database</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>In CUPS, I created the new external database: </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> Database name -> tcmadb</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> Username -> tcuser</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> Pasword -> password that I assigned to tcuser when I created it in the database</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> Hostname -> IP address of my win2K8 server</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> Port Number -> 5432.</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>After several failures, I found a thread that indicated that I should create a new user in the Windows domain called tcuser. I did that, and gave that user domain admin privileges.</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>I get the failure to connect error under External Database Status</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>Green check for reachability</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>Failure on connectivity to database “Verify the hostname, username, and password are valid”</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'>Does it have anything to do with the postgres user account?</span><o:p></o:p></p><p><span style='font-family:"Arial","sans-serif"'> </span><o:p></o:p></p></div></div></blockquote></div></div></div></blockquote></div></div></div></div><div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><br><br>-- <br>--<br>Florian Kroessbacher<br>gmail: <a href="mailto:florian.kroessbacher@gmail.com" target="_blank">florian.kroessbacher@gmail.com</a><o:p></o:p></p></div></div></div></div><p class=MsoNormal style='margin-bottom:12.0pt'><br>_______________________________________________<br>cisco-voip mailing list<br><a href="mailto:cisco-voip@puck.nether.net">cisco-voip@puck.nether.net</a><br><a href="https://puck.nether.net/mailman/listinfo/cisco-voip" target="_blank">https://puck.nether.net/mailman/listinfo/cisco-voip</a><o:p></o:p></p></blockquote></div><p class=MsoNormal><o:p> </o:p></p></div></div></body></html>