Digest Authentication Setup for SIP Trunks

Similar documents
Phone NTP Reference Configuration

User Group Configuration

BLF Presence. Configure BLF Presence

The Group Call Pickup feature and Directed Call Pickup feature do not work with hunt lists.

Application User Configuration

Application User Setup

Using the Certificate Authority Proxy Function

This chapter provides information about managing end user directory information.

Certificate authority proxy function

Phone NTP Reference Configuration

User Templates. Find BAT User Template. Procedure

Softkey Template Setup

End User Setup. About End User Setup

Cisco Unified CM User Options

Configuring Authentication and Encryption for CTI, JTAPI, and TAPI

Configure Third-Party SIP Phones

Creating a Crosstab Query in Design View

Spectrum Enterprise SIP Trunking Service Cisco Unified Communication Mgr Firmware 6.01 IP PBX Configuration Guide

Common Phone Profile Configuration

Cisco Unified Communications Manager configuration for integration with IM and Presence Service

Updating Users. Updating Users CHAPTER

CTI route point setup

Intercom. Configuration Checklist for Intercom CHAPTER

Intercluster Peer Configuration

Adding Users. Adding Users CHAPTER

Survivable Remote Site Telephony Configuration

Configure Global Dial Plan Replication

Intercluster directory URI

Configuring SIP Registration Proxy on Cisco UBE

Real-Time Monitoring Configuration

SIP Normalization Script Configuration

Configuration of trace and Log Central in RTMT

Hotline. Configuration Checklist for Hotline CHAPTER

Cisco Unified Customer Voice Portal

Cisco voic port setup

Encrypted Phone Configuration File Setup

Malicious Call Identification

Text editors for phone CSV data file creation. You cannot modify or delete the Simple Phone or Default Phone file formats.

Wireless LAN Profile Setup

Getting Started With the Cisco PAM Desktop Software

Cisco Mobile Skill Manager

Cisco Voic Port Configuration

About Cisco Unified Communications Manager Group Setup

Migrate Data from Cisco Secure ACS to Cisco ISE

Tip: You can modify variable settings after you add the web application. See Managing repository variable list values, page 4.

Configure Intercluster Lookup Service

Configuring Service Monitor

Configuring a Secure Survivable Remote Site Telephony (SRST) Reference

Route Group Setup. About Route Group Setup. Route Group Deletion

IM and Presence Service Network Setup

Data Sources. Data Sources Page

Do Not Disturb. Configuration Checklist for Do Not Disturb CHAPTER

This chapter provides information about the Do Not Disturb (DND) feature which provides the following options:

Enterprise Architect. User Guide Series. Testing. Author: Sparx Systems. Date: 10/05/2018. Version: 1.0 CREATED WITH

Provision Unified CM for Unified CCX

Data Sources. Data Sources page

Configuring Multi-Tenants on SIP Trunks

Wesleyan University Student/Faculty Information System. Using Between Criteria with Prompts in Query

Microsoft Access 2010

Introduction to Microsoft Access 2016

Organizing Your Contacts

Microsoft Access 2013

Microsoft Access 2013

Meet-Me Conferencing

Meet-Me Conferencing

Lab - Share Resources in Windows

Common Device Configuration

Credential Policy CHAPTER

Partition Setup. About Partition Setup

Second SIP Fallback with Gateway Registration

Call Forwarding. Call Forwarding Overview

Encrypted Phone Configuration File Setup

Configuring a Secure Survivable Remote Site Telephony (SRST) Reference

Manage Finesse IP Phone Agent

Configure SIP Registrations to Authenticate and Authorize on a Per-user Basis (MRA) for CUCM 11.5

Call Park and Directed Call Park

Cisco Extension Mobility

Phone Security. Phone Security. This chapter provides information about phone security.

Post-Installation Tasks

Second SIP Gateway Fallback with Endpoint Registration

Using the Prime Performance Manager Web Interface

Enterprise Architect. User Guide Series. Testing. Author: Sparx Systems. Date: 26/07/2018. Version: 1.0 CREATED WITH

Configuring Role-Based Access Control

Manage End Users. End User Overview. End User Management Tasks. End User Overview, on page 1 End User Management Tasks, on page 1

Configuring Triggers. Viewing and Deleting Triggers

For Trace and Log Central to work, you must resolve DNS lookup for all nodes in the cluster on the client machine.

Partition Configuration

IM and Presence Service Configuration for SIP Federation

Device Management Basics

User Preferences Settings

Enterprise Architect. User Guide Series. Testing. Author: Sparx Systems Date: 15/07/2016 Version: 1.0 CREATED WITH

BANNER 9 QUICK NAVIGATION GUIDE

Hold Reversion. Configuration Checklist for Hold Reversion CHAPTER

From the drop-down list, select Administrator or Supervisor.

A. On the VCS, navigate to Configuration, Protocols, H.323, and set Auto Discover to off.

Configure Cisco Unified Communications Manager

Backup the System. Backup Overview. Backup Prerequisites

Enterprise Architect. User Guide Series. Testing

Location Configuration

Configure Autoregistration

Transcription:

This chapter provides information about digest authentication setup for SIP trunks. When you configure digest authentication for SIP trunks, Cisco Unified Communications Manager challenges the identity of the SIP user agent when it receives a SIP request on the SIP trunk. The SIP user agent, in turn, can challenge the identity of Cisco Unified Communications Manager when Cisco Unified Communications Manager sends a SIP request to the trunk. For additional information on how digest authentication works for SIP trunks, see topics related to digest authentication. Set Up SIP Trunk Digest Authentication, page 1 Set Up Digest Authentication Enterprise Parameters, page 2 Set Up Digest Credentials, page 2 Application User Digest Credential Settings, page 3 Find SIP Realm, page 3 Configure SIP Realm, page 4 SIP Realm Settings, page 5 Delete SIP Realm, page 5 Where to Find More Information About SIP Trunk Digest Authentication, page 6 Set Up SIP Trunk Digest Authentication The following procedure describes the tasks to configure digest authentication for SIP trunks. Step 2 Configure the SIP trunk security profiles; make sure that you check the Enable Digest Authentication check box. Apply a SIP trunk security profile to the trunk. Configure the enterprise parameter, Cluster ID, if not configured. This parameter supports Cisco Unified Communications Manager challenges to the identity of the SIP user agent that is sending a SIP request on the SIP trunk. 1

Set Up Digest Authentication Enterprise Parameters Step 4 Step 5 If Cisco Unified Communications Manager challenges the identity of SIP user agents that are sending SIP requests on the SIP trunk, configure the digest credentials for the application user in the Application User Configuration window. If Cisco Unified Communications Manager responds to challenges from a trunk peer, configure the SIP realm. Application User Digest Credential Settings, on page 3 Apply SIP Trunk Security Profile Configure SIP Realm, on page 4 Digest Authentication Set Up Digest Authentication Enterprise Parameters, on page 2 Set Up Digest Credentials, on page 2 SIP Realm Settings, on page 5 Set Up Digest Authentication Enterprise Parameters To configure the enterprise parameter, Cluster ID, for digest authentication, choose System > Enterprise Parameters in Cisco Unified Communications Manager Administration. Locate the Cluster ID parameter and update the value, as described in the Help for the parameter. This parameter supports Cisco Unified Communications Manager challenges to the identity of the SIP user agent that is sending a SIP request on the SIP trunk. Tip To access the Help for the parameter, click the question mark that displays in the Enterprise Parameters Configuration window or click the parameter link. Set Up Digest Credentials If Cisco Unified Communications Manager challenges the identity of a SIP user agent, you must configure the digest credentials for the application user in the Application User Configuration window in Cisco Unified Communications Manager Administration. Cisco Unified Communications Manager uses these credentials to verify the identity of SIP user agents that are sending requests through the SIP trunk. To configure the digest credentials for an application user, perform the following procedure: 2

Application User Digest Credential Settings Step 2 Step 4 Find the application user, as described in the Administration Guide for Cisco Unified Communications Manager. Click the application user link. After the specific Application User Configuration window displays, enter the appropriate settings, as described in Table 2: SIP Realm Security Profile, on page 5. Click Save. SIP Realm Settings, on page 5 Application User Digest Credential Settings The following table describes the settings for the digest credential settings in the Application User Configuration window in Cisco Unified Communications Manager Administration. Table 1: Digest Authentication Credentials Setting Digest Credentials Confirm Digest Credentials Description Enter a string of alphanumeric characters. To confirm that you entered the digest credentials correctly, enter the credentials in this field. Find SIP Realm To find a SIP Realm, perform the following procedure: In Cisco Unified Communications Manager Administration, choose User Management > SIP Realm. The Find and List window displays. Records from an active (prior) query may also display in the window. Step 2 To find all records in the database, ensure the dialog box is empty; go to, on page 4. To filter or search records 3

Configure SIP Realm Step 4 a) From the first drop-down list box, choose a search parameter. b) From the second drop-down list box, choose a search pattern. c) Specify the appropriate search text, if applicable. Note To add additional search criteria, click the + button. When you add criteria, the system searches for a record that matches all criteria that you specify. To remove criteria, click the button to remove the last added criterion or click the Clear Filter button to remove all added search criteria. Click Find. All matching records display. You can change the number of items that display on each page by choosing a different value from the Rows per Page drop-down list box. From the list of records that display, click the link for the record that you want to view. Note To reverse the sort order, click the up or down arrow, if available, in the list header. The window displays the item that you choose. What to Do Next If you have not already done so, configure the Cluster ID enterprise parameter. Set Up Digest Authentication Enterprise Parameters, on page 2 Configure SIP Realm If Cisco Unified Communications Manager responds to challenges from one or more trunk peers, you must configure SIP Realm for each SIP trunk user agent that can challenge Cisco Unified Communications Manager. To add or update a SIP Realm, perform the following procedure: In Cisco Unified Communications Manager Administration, choose User Management > SIP Realm. Step 2 Enter the appropriate settings as described in Table 2: SIP Realm Security Profile, on page 5. Click Save. Step 4 Perform the procedure for all realms that you must add or update. What to Do Next To ensure that digest authentication is successful, verify that the same settings that you configured in Cisco Unified Communications Manager are configured on the SIP user agent. Find SIP Realm, on page 3 4

SIP Realm Settings SIP Realm Settings The SIP Realm provides the trunk-side credentials when Cisco Unified Communications Manager gets challenged by a trunk peer. The following table describes the settings for the SIP Realm. Table 2: SIP Realm Security Profile Setting Realm User Digest Credentials Confirm Digest Credentials Description Enter the domain name for the realm that connects to the SIP trunk; for example, SIPProxy1_xyz.com. You can use alphanumeric characters, period, dash, underscore, and space. Enter the user name for the SIP user agent in this realm; for example, enter the Cisco Unified Communications Manager server name. The SIP trunk uses this user name to challenge this Cisco Unified Communications Manager. Enter the password that Cisco Unified Communications Manager uses to respond to a challenge for this realm and user. Re-enter the password for verification. Delete SIP Realm This section describes how to delete a SIP Realm from the Cisco Unified Communications Manager database. Step 2 Find the SIP Realm to delete. Perform one of the following tasks: a) To delete multiple SIP Realms, perform one of these tasks in the Find and List window: Check the check boxes next to the realms that you want to delete; then, click Delete Selected. You can delete all configurable records for this selection by clicking Select All and then clicking Delete Selected. b) To delete a single SIP Realm, perform one of these tasks in the Find and List window: Check the check box next to the realm that you want to delete; then, click Delete Selected. 5

Where to Find More Information About SIP Trunk Digest Authentication Click the Name link for the realm. After the specific SIP Realm Configuration window displays, click Delete Selected. When prompted to confirm the delete operation, click OK to delete or Cancel to cancel the delete operation. Find SIP Realm, on page 3 Where to Find More Information About SIP Trunk Digest Authentication Digest Authentication Set Up SIP Trunk Digest Authentication, on page 1 Set Up Digest Authentication Enterprise Parameters, on page 2 6

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback