Table of Contents
Advertisement
Setting Up Cisco Cius
Unified Communications Manager server, and ensure that Cisco Cius uses only digitally signed files. Data
on the Cisco Cius device itself is protected by an Encrypted File System.
Cisco Unified Communications Manager (beginning with Release 8.5(1)) includes Security by Default, which
provides the following security features for Cisco Cius devices without running the CTL client:
• Signing of Cisco Cius configuration files
• Cisco Cius configuration file encryption
• HTTPS with Tomcat and other web services
Note
Secure signaling and media features still require you to run the CTL client and use hardware eTokens.
For more information about the security features, see the
Also, see the Cisco Unified Communications Manager Security Guide.
A Locally Significant Certificate (LSC) is installed on Cisco Cius after you perform the necessary tasks that
are associated with the Certificate Authority Proxy Function (CAPF). You can use Cisco Unified
Communications Manager Administration to configure an LSC, as described in the Cisco Unified
Communications Manager Security Guide.
Alternatively, you can initiate the installation of an LSC from the Enterprise Security Settings menu on Cisco
Cius. This menu also lets you update or remove an LSC.
To configure an LSC on Cisco Cius, perform these steps:
Before You Begin
Make sure that the appropriate Cisco Unified Communications Manager and the CAPF security configurations
are complete. See the Cisco Unified Communications Manager Security Guide and the Cisco Cius Wireless
LAN Deployment Guide for more information.
Procedure
Step 1
Obtain the CAPF authentication code that was set after the CAPF was configured.
Step 2
From the home screen on Cisco Cius, choose Applications Menu > Settings > Location & security >
Enterprise security settings.
Step 3
Tap LSC.
Cisco Cius prompts for an authentication string.
Step 4
Enter the authentication string if required by administrator and tap Submit.
Cisco Cius begins to install, update, or remove the LSC, depending on how the CAPF was configured. During
the procedure, a series of messages appears in the LSC option field in the Security Configuration menu, so
you can monitor progress. After the procedure is completed successfully, Cisco Cius displays Installed or Not
Installed.
The LSC installation, update, or removal process can take a long time to complete. You can stop the process
at any time by tapping Cancel.
After the installation procedure is completed successfully, Cisco Cius indicates Installed. If Cisco Cius indicates
Not Installed, the authorization string may be incorrect or Cisco Cius may not enabled for upgrading. If the
CAPF operation deletes the LSC, Cisco Cius indicates Not Installed to indicate that the operation was successful.
See error messages generated on the CAPF server and take appropriate actions.
OL-27284-01
Configuring Security on Cisco Cius
Understanding Security Features for Cisco
Cisco Cius Administration Guide, Release 9.2(4)
Cius.
13
Advertisement
Table of Contents
