First a little background. In our lab we have multiple versions of Communications Manager, depending on what I am working on I often need to switch between versions. To make these easier I created a small PHP script which i added to the phones as a service that allows me to select what version I want to run. This lets me change between any of the CUCM servers or CME's in our lab (basically the script screen scrapes the phone web page to get information about it, uses CDP to find what port it is connected to on the switch, and changes to voice vlan on the switch. the phone then pulls a new DHCP information and gets the config from the TFTP server associated with that scope). The problem I have, is with CUCM 8 the introduction of the ITL file. I can switch from CUCM 7 to CUCM 6 fine, or to a CME, but if I try and switch from CUCM 8 to CUCM 7 the ITL file gets in my way. If I go into the phone and erase the ITL file it then switches fine, but What I am trying to do is find a way to automate this a bit.
I have seen this document in a few threads regarding ITL: http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/security/8_0_2/secugd/secusbd.html#wp1092162 As I understand it, this will essentially disable the ITL feature which does solve my direct problem. However, as per the note in that document that "Phone services that use https (for example, extension mobility) will not work while this parameter is enabled" this may cause me other issues down the road, so I want to avoid that route if possible.
So my question is. Is there anyway through a remote script I can clear the ITL file (I am assuming not as that would kind of be a security whole that defeats the purpose of the file, unless of course it requires authentication to execute it)? Or is there any way to administratively control what is listed in the ITL so I can tell it to trust CUCM7, and 6, and my CME's etc.? Or even anyway to disable ITL just for certain phones, and not cluster wide as is done through the in the document above?