Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
333
Views
0
Helpful
4
Replies

Security in IP Telephony

jssekhar
Level 1
Level 1

‎10-18-2002 06:19 AM - edited ‎03-12-2019 09:13 PM

Hello,

We have customers deployed with Cisco IP Telephony solutions. We need to address the security issues in CIPT environments. Went through the SAFE whitepapers on IPT Security. But I have the following to know:

1) Can we upgrade the OS of Call Manager with the latest MS security patches and hot fixes, as and when released from MS? Will there be any application problems? Should we wait for any Cisco notifications (if there are any) on such upgrades?

2) SAFE whitepaper suggests host IDS and host antivirus programs on the Call Manager? Any issues to be taken care of, before such implementations?

Any advise on the above is warmly appreciated, since it will help me win more IPT business in my accounts.

Sekhar J S

Labels:
0 Helpful
4 Replies 4

Chester Rieman
Cisco Employee
Cisco Employee

‎10-21-2002 02:33 PM

To address your questions:

You should wait until the updates are tested and approved for use with with call manager. Here is the install guide for the IDS on CCM:

http://www.cisco.com/en/US/partner/products/sw/voicesw/ps556/products_tech_note09186a008009428f.shtml

0 Helpful

mmeditz
Level 1
Level 1
In response to Chester Rieman

‎12-24-2002 09:53 AM

Are Host IDS and Anti-Virus software on Call Manager approved by TAC? My understanding is that they are not approved, is this accurate?

Thanks,

Mike

0 Helpful

travis-dennis_2
Level 7
Level 7
In response to mmeditz

‎12-24-2002 08:04 PM

I believe the CIsco Host IDS is approved and the only approved/supported anti-virus that I am aware of is Mcafee NetShield.

0 Helpful

alan.basinger
Level 1
Level 1

‎04-15-2003 06:46 PM

Too address both of your questions

1.) You should only upgrade the call managers OS with the Cisco patches and hot fixes. The reason is that the Spirian install doesn't install the complete MS OS. Also many services that are not neccessary for CM are not installed or are disabled.

2.) IDS is a very very good idea. The HIDS product woks very well if configured correctly, McAffee and Symantec are both approved by Cisco as antivirus currently if I am not mistaken.

I recommend HIDS with all IPTelephony sales. You should work with the HIDS products and CM for a while to get familair with configurations that will maximize performance and security. If HISD is configured incorrectly you will potentialy create a DOS situation for your end users when you lock the server down.

0 Helpful
Customers Also Viewed These Support Documents