10-13-2014 05:25 AM - edited 03-17-2019 12:31 AM
Dear Team,
I want to use VPN less Cisco jabber for J4W, J4I, J4A with expressway C & E.
Expressway-C :
For generating the CA certificates via CSR,I did not find the FQDN PhoneSecurityProfiles.
I have to create three FQDN Phone security profile for J4W, J4I, J4A? right
and these three profile have to use with comma to generate CSR in EXP-C? right
Expressway-E:
In Expressway E CSR ,we need to add the internal or public domain name ?
Thanks
10-13-2014 02:35 PM
The phone security profile is only required if you have CUCM in mixed mode. The CSRs that need to be signed are for Expressway E, CUCM, IM&P, UCN. Expressway E should have the IM domain name as a SAN.
10-14-2014 06:09 PM
10-15-2014 03:37 AM
Waqas,
You need certificates! Goerge is talking about phone security profile. Your expressway-e and c connect using tls, hence you need to have a CA signed certificate uploaded to both servers. That means you need to generate CSR on both servers and upload the cert as server certs. Before you upload server cert, you need to upload the CA cert used to sign the server cert
10-15-2014 10:20 AM
10-15-2014 03:42 PM
Do you have IM/P installed? Why is it saying domain.not.set? You need to set the domain first before you start generating certificates.
As mentioned earlier, if you dont have your CUCM cluster in mixed mode (ie. encrypted voice/signaling), then the phone security profiles field can be blank.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide