I have a question regarding PKI certificates on EMCC. I am trying to determine the advantages and disadvantages of using 3rd party certificates with EMCC.
The organisation's CUCM clusters are running in normal (unsecure mode), not mixed mode.
The organisation has an existing internal PKI system, with heirachical CAs (e.g. Root CA and separate Issuing CAs).
With regard to the certificate consolidation process when configuring EMCC, if you were to replace the CUCM and tomcat certificates with certs that we issued by the organisations CA, and the Root CA was installed as a trusted CA, would that then result in all CUCM nodes and phones trusting all other nodes from remote clusters that also trusted the Root CA?
The advantage of this would be that you would not need to re-run the certificate Consolidation/import process on every cluster each time a new node is added...
Or, does the EMCC feature implementation require that the individual certificate that is being used by the remote cluster's tomcat and tftp services is directly imported via the bulk consolidation and import process documented in the config guide. I suspect this would mean there is little advantage in using the certificates generated by the internal PKI system, when not using SRTP.
SIP traces provide key information in troubleshooting SIP Trunks, SIP
endpoints and other SIP related issues. Even though these traces are in
clear text, these texts can be gibberish unless you understand fully
what they mean. This document attempts to br...
Please find the attached HTML document, download and open it on your PC.
This provides an easy to use form where you simply answer a few
questions and it will render the proper jabber-config.xml file for you
to copy/paste. There is built in logic to verif...
CUCM Database Replication is an area in which Cisco customers and
partners have asked for more in-depth training in being able to properly
assess a replication problem and potentially resolve an issue without
involving TAC. This document discusses the bas...