Book Image

Cisco Unified Communications Manager 8: Expert Administration Cookbook

By : Tanner Ezell
Book Image

Cisco Unified Communications Manager 8: Expert Administration Cookbook

By: Tanner Ezell

Overview of this book

Cisco Unified Communications Manager (CUCM) is a software-based call-processing system developed by Cisco Systems. CUCM tracks all active VoIP network components; these include phones, gateways, conference bridges, transcoding resources, and voicemail boxes among others. This scalable, distributable, highly-available enterprise-class system delivers voice, video, mobility, and presence services. It connects up to 30,000 users of IP phones, media processing devices, VoIP gateways, mobile devices, and multimedia applications. With this cookbook you will learn all the important aspects of administering Cisco Unified Communications Manager. Cisco Unified Communications Manager 8: Expert Administration Cookbook is filled with many advanced recipes to effectively and efficiently configure and manage Cisco Unified Communications Manager. This book covers everything an administrator needs during and after Cisco Unified Communications Manager implementation. This practical cookbook contains detailed step-by-step instructions with clear and informative screenshots that cover all the important and advanced aspects of administering Cisco Unified Communications Manager. The book starts with introducing Call Routing and E.164. It then covers configuration and design information for the various call admission control technologies and Media Resources. The book also dives deep into troubleshooting, upgrades, disaster recovery, user management and much more.

Related Content you might be interested in

Current Title:

Small book image
Cisco Unified Communications Manager 8: Expert Administration Cookbook
Tanner Ezell
Mar, 2012 | 310 pages
No titles found
Table of Contents (18 chapters)
Cisco Unified Communications Manager 8: Expert Administration Cookbook
Cisco Unified Communications Manager 8: Expert Administration Cookbook
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Call Routing, Dial Plan, and E.164
Call Routing, Dial Plan, and E.164
Introduction
Implementing local route groups with device pools for E.164 call routing
Implementing E.164 route patterns and partitions
Implementing E.164 called and calling party transformations
Implementing least cost call routing using Tail End Hop Off
Implementing calling restrictions with line blocking partitions and calling search spaces
Implementing short dial numbers
Implementing time-of-day call routing
Implementing Forced Authorization Codes
Implementing Client Matter Codes
2
Call Admission Control
Call Admission Control
Introduction
Implementing location-based call admission control
Implementing regions for call admission control
Implementing the Resource Reservation Protocol
Enabling Automated Alternate Routing
Implementing Automated Alternate Routing
3
Media Resources and Music On Hold
Media Resources and Music On Hold
Introduction
Configuring software conference bridges
Configuring IOS conference bridges
Configuring transcoders
Configuring media termination points
Configuring media resource groups
Configuring media resource group lists
Implementing unicast Music On Hold
Configuring multicast Music On Hold
Adding custom media files for Music On Hold
4
Tracing and Troubleshooting Tools
Tracing and Troubleshooting Tools
Introduction
Configuring user permissions for the Real-Time Monitoring Tool
Collecting traces using the Query Wizard
Configuring the e-mail server for the Real-Time Monitoring Tool
Creating custom alerts in the Real-Time Monitoring Tool
Configuring custom alert actions
Capturing packets
Analyzing the Dial Plan with the dialed number analyzer
5
Device and Unified Mobility
Device and Unified Mobility
Introduction
Configuring physical locations
Configuring device mobility groups
Configure device pools for device mobility
Configuring device mobility info
Enabling device mobility
Configuring mid-call feature access codes
Configuring Session Handoff
Enabling Intelligent Session Control
Implementing mobility access lists
Configuring remote destination profiles
Configuring remote destinations
Implementing Mobile Voice Access
Enabling Enterprise Feature Access
Adding the Mobility softkey
6
User Management
User Management
Introduction
Enabling LDAP synchronization
Configuring an LDAP Directory
Enabling LDAP authentication
Configuring custom LDAP filters
Configuring credential policies
Configuring default credential policies
Assigning credential policies
Configuring user roles
Configuring user groups
Assigning user groups to end users
7
User Features
User Features
Introduction
Implementing direct transfer to voice mail
Implementing Meet-Me conferencing
Implementing call park
Implementing directed call park
Configuring the Intercom feature
Configuring Malicious Call Identification
Adding a custom ringtone
Adding a custom background image
Configuring dual mode for iPhone
8
Advanced Features
Advanced Features
Introduction
Enabling the Extension Mobility service
Configuring the Extension Mobility phone service
Configuring phone devices for Extension Mobility
Configuring device profiles for Extension Mobility
Configuring Extension Mobility service parameters
Enabling the Cross Cluster Extension Mobility services
Configuring the Cross Cluster Extension Mobility phone service
Configure users for Cross Cluster Extension Mobility
Preparing certificates for Cross Cluster Extension Mobility
Creating a template for Cross Cluster Extension Mobility devices
Configuring Cross Cluster Extension Mobility parameters
Configuring intercluster trunks for Cross Cluster Extension Mobility
Configuring the intercluster service profile for Cross Cluster Extension Mobility
Configuring monitoring and recording
Configuring geolocations and filters
Implementing logical partitioning
Configuring hotline service parameters
Configuring a hotline device
Configuring barge for devices and users
Configuring privacy for devices and users
9
Securing Unified Communications
Securing Unified Communications
Introduction
Configuring phone security profiles
Configuring devices for secure tone
Configuring Certificate Authority Proxy Function
Configuring digest authentication
Implementing endpoint hardening
Implementing a secure conference bridge
Implementing secure Meet-Me conferences
Configuring VPN for Cisco IP phones
Configuring application users for secure communication
10
Serviceability, Upgrades, and Disaster Recovery
Serviceability, Upgrades, and Disaster Recovery
Introduction
Configuring alarms
Configuring traces
Configuring SNMP versions 1 and 2
Configuring SNMP Version 3
Applying patches and upgrades
Configuring a backup device
Configuring a backup schedule
Performing a manual backup
Restoring from backup
11
Bulk Administration Tool
Bulk Administration Tool
Introduction
Introducing the Bulk Administration Tool
Enabling the Bulk Provisioning Service
Creating and using a custom file
Bulk provisioning phones
Bulk provisioning users
Bulk provisioning user device profiles
Bulk provisioning gateways
Bulk provisioning Forced Authorization Codes
Bulk provisioning Client Matter Codes
Bulk provisioning call pickup groups
Bulk provisioning access lists
Bulk provisioning remote destination profiles
Bulk provisioning remote destinations
Bulk provisioning mobility profiles
Exporting data
Index
Index

Implementing endpoint hardening

Endpoint hardening is a supplementary step that can provide greater protection from various forms of attacks. It may also make it difficult for users to gain information about the system by preventing the phone from relaying certain information.

Getting ready

Determine from business requirements the fields and options required, and those that will not be required. Those that are not required can be disabled as part of endpoint hardening.

How to do it...

To harden an endpoint from various forms of attacks and vulnerabilities, perform the following:

  1. Navigate to the endpoint to be hardened (Device | Phone).

  2. Under the Product Specific Configuration Layout section, enable or disable the following fields as required:

    • PC Port

    • Settings Access

    • Gratuitous ARP

    • PC Voice VLAN Access

    • Web Access

  3. Click on Save.

  4. Click on Reset.

  5. Repeat these steps for each endpoint that requires hardening.

How it works...

By disabling certain services, we can increase the security of our setup and...

Previous Section
End of Section 7
Next Section