Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
295
Views
0
Helpful
3
Replies

PhoneProxy Enable SCCP Security

aknight
Level 1
Level 1

‎07-28-2007 07:32 PM - edited ‎03-14-2019 10:49 PM

I'm trying to enable secure SCCP through our PhoneProxy. from the cli on the proxy i've entered 'set phoneproxy sccp security on' then following the directions in the Admin guide. I've gone to the ProxyAdmin tool and choose the "update cluster information" option. The application downloads the files and i can see them in the temp folder. I'm then prompted to "please plug in the eToken then click OK to sign control file." There is no indication in the instructions where to "plug in the eToken". If anyone has had any luck please hellp :)

Labels:
0 Helpful
3 Replies 3

Jason Aarons
Level 6
Level 6

‎07-29-2007 04:23 PM

An eToken is the USB key used (two should have been used for safekeeping) when you configured CallManager/CTL for secure SCCP.

If you didn't setup the phones/callmanager for CTL/Secure SCCP then PhoneProxy pass SRTP.

0 Helpful

aknight
Level 1
Level 1
In response to Jason Aarons

‎07-29-2007 06:43 PM

Jason - Thanks for the response..

According to the doc's, using the CLI you turn on the Secure SCCP, then goto the Admin tool and update proxy. This downloads the keys that were created during the enable process (i can see the keys in the temp workspace). There's no mention of the keys needing to be copied anywhere. This would not be so confusing if there was a dialog box to point to the location of the keys that the admin tool downloaded..

From your response, perhaps i need to be physically at the box to capture the keys to a USB stick(s)? I still don't see how these would get into the Admin tool though.. Any additional comments are much appreciated..

0 Helpful

dbethke
Level 1
Level 1

‎08-06-2007 01:23 PM

I admit, we need a few more sentences in the admin guide to explain where you should stick those keys. This will be addressed in the next revision of the document, but until then...

The keys (USB eTokens) should be inserted into a USB port on the administrator's PC, which is running the Managment Console (not into the actual PhoneProxy hardware). After the first key is inserted and read, the Management Console software will prompt for the next key. After that the software will sign the files with the info from the keys and then you're ready to publish that info back to the PhoneProxy.

0 Helpful
Customers Also Viewed These Support Documents