Solved: security threat while configuring Anyconnect on Mobile for Jabber

hashimwajid1 · ‎02-03-2019

Hi Experts,

I've one query regarding Cisco Jabber configuration. we want to use Jabber on Phones but we have concern if it could cause any threat to organization security ?

what kind of security threats can be involve if we configure VPN on Phones for using Jabber and what are the Steps that we can take to avoid the risk.

Thanks and Best Regards

Rob Ingram · ‎02-03-2019

Hi,
If you are using Jabber inconjunction with a VPN then you are mitigating a security threat. You just need to make sure the VPN is secure, make sure you use strong algorithms and if possible 2 factor authentication (certicates + aaa) at least.

HTH

View solution in original post

Rob Ingram · ‎02-03-2019

Hi,
If you are using Jabber inconjunction with a VPN then you are mitigating a security threat. You just need to make sure the VPN is secure, make sure you use strong algorithms and if possible 2 factor authentication (certicates + aaa) at least.

HTH

hashimwajid1 · ‎02-03-2019

Dear RJI,

Thanks for the Reply

if the PC which try to connect from Outside through Any connect VPN and that PC gets comprised than in this case Hacker can exploit it if that PC running Jabber and have the access of Voice gateway.

our more concern in voice Traffic because last time hacker exploited the Voice traffic by making illegal calls by exploiting the voice gateway.

Rob Ingram · ‎02-03-2019

Yes of course if the machine is compromised they could access the network. If the machine is compromised with Malware then AMP or a HIPS would help identify and contain the threat. If the machine were to be stolen then using 2FA would prevent them just connecting to the network.