topic Hi Jaime, in Collaboration Applications

Is there any way to secure jabber-config.xml files from changes which aren't deployed from CUCM?

Nadav — Mon, 18 Mar 2019 01:37:53 GMT

Hi everyone,

If I want all changes to Jabber client security to be only possible from the CUCM, and not from anyone modifying the local jabber configuration files, is there a way to secure the file? Perhaps some sort of hash mechanism which checks if the checksum is the same as when it was deployed?

I'm interested in assuring that a user doesn't allow privileges which I'm not interested in him having, including changing LDAP filters for contacts.

Thanks!

No, right now there is no way

Jaime Valencia — Wed, 18 Jan 2017 15:20:55 GMT

No, right now there is no way to secure the file by any means.

If your users know how to change the file, and where it is, you might want to lock down this at the OS level and remove their permissions to those folders/files.

Hi Jaime,

Nadav — Thu, 19 Jan 2017 17:11:23 GMT

Hi Jaime,

Locking files down on the local filesystem, especially for Windows distributions, is barely secure. Is there any deployment for saving these files on a network share so that users will have RO rights?