cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2768
Views
10
Helpful
8
Replies

Secure trunk (TLS) between CUCM and Microsoft Lync

b.paik
Beginner
Beginner

Hi,

I am trying to get CUCM 11.0 and Microsoft Lync 2013 working with direct SIP trunk over TLS and sRTP. it's working fine without the TLS configuration but as soon as i try to secure the signalling and media i get certificate error in wireshark from CUCM to Lync "unsupported certificate" and they are both from same enterprise CA using SHA256 hash (not SHA1).

just wondering if anyone has successfully got this configuration working?

CUCM -------------(SIP TRUNK-TLS)----------LYNC_2013

Thanks in advance :)

8 Replies 8

Md Hasan
Cisco Employee
Cisco Employee

Please check in the wireshark about ciphersuit from Lync and from CUCM. It might to something is different between the two servers and could point to the 'issue'

Below is the security guide, based on what was found in wireshark can be matched if any information of support on those cipher suit.

http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/security/11_0_1/secugd/CUCM_BK_C1A78C1D_00_cucm-security-guide-1101.pdf