Cisco Unified CallManager and IP Phone Security

Q. From where will the phone get new firmware?

A. Phone will get new firmware from the TFTP Server.

 

Q. Is CTL not required if we move from 7.x to 8.x and if we have a secured cluster?

A. CTL file is still required for Media and Signaling encryption. The ITL file is introduced to reduce burden over the phone to verify certificates. TFTP keys (certificates and private key) are by default part of DRS backup as the Cisco CallManager Platform component.

 

Q. What happens if we do not have an Internet connection at that moment?

A. You really do not need to have an internet connectivity available at that moment. Once you have the specific certificate being installed in the cluster of the CUCM, then you do not need to go back to identify the certificate since you already have the authority with the root certificate installed on your Cisco CallManager.

 

Q. If a customer is using UC Proxy on their phones (over the Internet), will they will still need CTL files?

A. Yes, CTL file is always required for Media and Signaling encryption.

 

Q. Which two certificates should not be regenerating at the same time?

A. CUCM + TFTP and TVS.

 

Q. Do UC applications such as Cisco Jabber for iPhone use ITL file?

A. All the end points by Cisco support ITL file. For more specific information about this question, please check the “Ask the expert session” to get the exact answer from the Experts.

 

 

Q. Do we need to choose some options or by default, is TFTP key backup included in DRS backup?

A. TFTP keys (certificates and private key) are by default part of DRS backup as Cisco CallManager Platform component.

 

Q. Is deleting the CTL and ITL files on every phone a manual, phone by phone process that must be done in person/at the phone itself?

A. Yes, this is very rare scenario but it is manual operation at phone. However, this is being enhanced to handle centrally by CUCM in an upcoming version of CUCM.

 

Q. What are the Ports that need to be open?

A. Ensure TVS Port 2445 is open in your network. Whenever you plan to move your cluster to CUCM 8.x for the upgrade, ensure TVS Port 2445 and TLS protocol allowed just in case if you have highly secured network. If these ports are blocked, phones will not be able to contact TVS server and will fail to download the ITL files and phones will not get registered.

 

Q. What is Mixed mode cluster?

A. Well, you run CTL client and get your cluster in Mixed mode.. To have secure communication, you can decide and use phone security profiles enable security on certain phones. You can enable security profile for certain phones like CEO/CTO’s phones and non-secured for other normal phones like lobby phones and this is nothing but the Mixed mode.

 

Q. What is phone hardening?

A. Phone Hardening is nothing but disabling some of the features on the phone, for example, disabling the web access http/https, disabling the phone settings to the end users, disabling the voice VLAN access settings and disabling the PC port setting. You can do it by accessing the Phone device or by using the BAT tool. Refer this link for more information,

http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/security/7_0_1/secugd/secu_ph.html

 

Q. How do we know a Certificate has or is about to expire?

A. In CUCM OS Administration Page, there is a feature called Service Monitor, which you can define the Alarm and trigger it when the Certificate will be expired and the frequency of the alarm. This sends an alarm before one month and you can monitor using RTMT and also you can send it to the e-mail alias.

 

Q. Do we need to install 3rd Party certificates on all nodes in cluster ?

A. No, the certificate will be replicated to the Trust Store of all the nodes & the change notification service will inform the TVS service on the node.

 

Q. What do we need CAPF certificates in ITL?

A. Yes, we need CAPF certificate in ITL inorder to authenticate to the CAPF service for LSC installation if the cluster is configured to be in mixed mode.

 

Q. If we have both CTL and ITL present on phone, which file phone will use to authenticate?

A. The phone will first try to authenticate using CTL, if the certificate is not found in CTL it will look up the ITL file.

 

Q. We have a customer on CUCM 7.1 and the CUCM has problems with the CTL/ITL files and is unable to update their firmware. We are being asked to delete these files on every phone to fix the problem.

A. The ITL file concept is not applicable to CUCM 7.1.

 

Q. Are there any drawbacks using Rollback parameter to allow changes to DNS or other Cluster parameters? Any downside in using this parameter when not rolling back?

A. No drawbacks. Only time that you want to use this is when you move from one version to another version and from one cluster to another cluster, so the phones get the TVS /ITL files and register. Once the registration is over, you need to change the parameter to false and restart the TFTP and Cisco CallManager service so that they download the ITL files with exact certificates.

 

Q. Are the security features available for 3rd party phones?

A. Right now the security feature is only available for Cisco phones and not for 3rd party phones.

 

Q. Is the CTL file size limited and how many nodes can I implement within this CTL file?

A. The CTL file needs to have the certificates from all nodes in the cluster. File size is not limited but the memory of the phone is limited, so we need to be careful in which certificate needs to have in the CTL file.

 

Q. If I’m upgrading from CUCM 7.1(5) in Mixed mode to 8.6 replacing the server (from physical to virtual), what do I need to complete the migration? Do I need to regenerate the CTL file on the new cluster?

A. Good Question. There are very specific steps to be followed for migration specially from Physical cluster to virtual. First upgrade the cluster to 8.x, take CLUSTER wide backup. Prepare virtual cluster with same version, restore the cluster wide backup. Or, take the backup of 7.x cluster, setup virtual cluster with 7.x version, restore cluster wide, make sure things are working properly and then upgrade cluster to 8.x.

.

Q. I can’t upgrade my cluster on the physical server. I need to upgrade it “off line” on the virtual server.

A. Take the backup of 7.x cluster, setup virtual cluster with 7.x version, restore cluster wide, make sure things are working properly and then upgrade cluster to 8.x.

 

Q. What If, I need to migrate only a set of phones from my existing 8.x cluster ?

A. One can use the “Prepare Cluster for Rollback to pre-8.0” enterprise parameter to download empty ITL files in the cluster. Once the empty ITL file has been downloaded, the phone will accept any ITL file coming its way next. Now you can move this set of phone to another cluster & set the enterprise parameter back to false.

 

Q. Is eToken connected to Admin PC or MCS directory?

A. Admin PC.

 

Q. How do we obtain the eTokens?

A. Contact your Account Manager with the Product and Key ID who can provide more information.

 

Q. How do I backup eToken?

A. You cannot backup the contents of eToken.

 

Q. What will happen if I loose my eToken?

A. The eTokens are supposed to be kept safely as we will need these tokens even to move the cluster from mixed to non secure mode.ou cannot backup the contents of eToken.

Cisco UCM User Licensing

Agenda 

• UCM Licensing High Level design
• Phone classification (a subset)
• License Tier classification
• Screen shots of the Licensing UI pages
• Troubleshooting tips
• Feature documentation

UCM Licensing High Level Design

Phone Classification

• Tin: analog, Cisco 3905, Cisco VGC phone, Cisco VGC Virtual phone
• Copper: Cisco 6901, Cisco 6911, Cisco 6921, CUC-RTX
• Bronze: Most phones
• Silver: Cisco IP Communicator, Cisco IP Personal Communicator, IMS integrated mobile, Unified Client Services Framework
• Gold: Cisco Dual Mode for Android, Cisco Dual Mode for iPhone, Cisco Unified Mobile Communicator,
• Telepresence: Carrier-Integrated Mobile

License Tiers

	Essential	Basic	Enhanced	Standard	Premium	Professional	Telepresence
Features
EM	Y	Y	Y	Y	Y	Y
SNR		Y	Y	Y	Y	Y
Phones (number)	1	1	1	2	6	10	1
Phone Type
Tin	Y	Y	Y	Y	Y	Y
Copper		Y	Y	Y	Y	Y
Bronze			Y	Y	Y	Y
Silver				Y	Y	Y
Gold					Y	Y
Tele-presence							Y

Licensing States on UCM

Demo

Warning displayed : The system is operating on demo licenses that will expire in <X> days. Add this system to an Enterprise License Manager and install sufficient licenses to cover its usage before expiration in order to avoid losing the ability to provision users and devices.

No Provisioning

Warning displayed : The system is operating without any valid licenses. Configure licenses on the system in order to restore the ability to provision users and devices.

Overage:

Warning displayed : The system is operating with an insufficient number of licenses. If additional licenses to cover the shortage are not configured in your Enterprise License Manager within <X> days, you will no longer be able to provision users and devices.

Lost connection to ELM

Warning displayed: The system has not synchronized successfully with Enterprise License Manager for <X> days. If successful synchronization does not occur within the next <60-X> days, you will no longer be able to provision users and devices.

Security mismatch with ELM

Warning displayed: Due to a certificate mismatch, the system has not synchronized successfully with Enterprise License Manager for <X> days. If successful synchronization does not occur within the next <60-X> days, you will no longer be unable to provision users and devices.

Grace

Warning displayed: The system is operating under a licensing grace period that will expire in 1 day. Install sufficient licenses in the Enterprise License Manager for this system to cover its usage in order to avoid losing the ability to provision users and devices. If licenses for this system are not already being managed by an Enterprise License Manager server, the system must first be added to one.

Warnings on Landing Page

Licensing UI 

License Usage Report (System -> Licensing->License Usage Report)

A high level view of all the license usage on the UCM cluster.

User details (System -> Licensing->License Usage Report -> Users)

Details regarding users and features enabled with respect to licensing.

Device details for each user: (System -> Licensing->License Usage Report -> Users -> View Details)

Details regarding the devices associated with each user.

Unassigned device details (System -> Licensing->License Usage Report -> Unassigned devices)

Details regarding devices provisioned which have not been associated with any user.

License Usage Report (System->Licensing)

User Details

Device details for each user

Unassigned device details

Troubleshooting tips

• License Manager logs are located at

/var/log/active/cm/trace/userlicensing/log4j

• Product servlet logs are located at

/usr/local/thirdparty/apache-tomcat-7.0.20/logs/elm-client/log4j

• Certificates used to validate communications with the ELM

/usr/local/platform/.security/userlicensing/trust_certs

Cisco_Root_CA_M1.pem (default) , ELM.pem and SubCa.pem (after ELM registration)

These certificates can be viewed from OS Admin->Security->Certificate Management

• License Manager alarms can be seen in Syslog and through RTMT. An example of an alarm in Syslog:

Dec 7 16:00:07 vos-cm34 local7 3 : 0: vos-cm34.cisco.com: Dec 08 2011 00:00:07.803 UTC : %UC_JAVAAPPLICATIONS-3-CiscoElmNotConnected: %[Reason=CiscoElmNotConnected][AppID=Cisco License Manager][ClusterID=][NodeID=vos-cm34]: Enterprise License Manager Not Connected

12.911649 77.603433

#licensing

All About Extension mobility

Introduction

This document describes the common problems in Extension Mobility.

Error :- Host not found

Resolution:-

 

• Check that the Cisco Tomcat service is running by choosing Cisco Unified Serviceability > Tools > Control Center—Network Services

 

•                          If you have changed the ip address on service URL then click on “Update subscriptions” (Device > Device Settings > Phone Services >IP Phone Services Configuration).and resubscribe each phone to which the wrong service was subscribed.

 

 

 

Error:- You can’t see the EM feature after hitting the services button

 

Resolution:-

 

-Verify that you have configured the Extension Mobility service

-Verify the service URL is correct

– Start/Restart the EM services on each node you are running.

 

 

 

Error:- You can’t log in/out of the EM feature but you can see it after pressing the services button

Resolution:-

 

This error comes when you haven’t enabled the extension mobility , subscribed the phones/device profiles to the service as needed and haven’t associated user to a device profile.

 

 

 

 

 

Error:- To set up speed dials and other services from your phone, please goto https://x.x.x.x:8443/ccmuser/showHome.do

Resolution:-

The above error comes when you haven’t subscribed the phone or device profile to the EM profile. Once this is done you should be able to see the EM profile and log in correctly.

Error:-After a user logs out and the phone reverts to the default device profile, the user finds that the phone services are no longer available.

Resolution:-

1. Check the Enterprise Parameters to make sure that the Synchronization Between Auto Device Profile and Phone Configuration is set to True.

2. Subscribe the phone to the Cisco Extension Mobility service.

 

 

Error:-After performing a login or logout, the user finds that the phone resets instead of restarting.

Resolution:-

• Locale change may provide the basis for reset.

 

• If the User Locale that is associated with the login user or profile is not the same as the locale or device, after a successful login, the phone will perform a restart that is followed by a reset. This occurs because the phone configuration file is being rebuilt.

Error[201]-Authentication error

Resolution:-

The user should check that the correct UserID and PIN were entered; the user should check with the system administrator that the UserID and PIN are correct.

Error [22]-Dev.logon disabled

Resolution:-

Make sure that you have chosen “Enable Extension Mobility” check box on the Phone Configuration window.

Error [205]-User Profile Absent

Resolution:-

Make sure that you have associated a Device Profile to the user.

Error [208]-EMService Conn. error

Resolution:-

Verify that the Cisco Extension Mobility service is running by choosing Cisco Unified Serviceability > Tools > Control Center—Feature Services

Error [25]-User logged in elsewhere

Resolution:-

Check whether the user is logged in to another phone. If multiple logins need to be allowed, ensure the Multiple Login Behavior service parameter is set to Multiple Logins Allowed

Error:- Http Error [503]

Resolution:-

 

If you get this error when Services button is pressed, check that the Cisco Communications Manager Cisco IP Phone Services service.

• If you get this error when you select Extension Mobility service, check that the Cisco Extension Mobility Application service is running by choosing Cisco Unified Serviceability > Tools > Control Center—Network Services.

 

 

Error:- [202]-Blank userid or pin

Resolution:-

Enter a valid userid and PIN.

Error:- [26]- Busy, please try again

Resolution:-

• Check whether the number of concurrent login/logout requests is greater than the Maximum Concurrent requests service parameter. If so, lower the number of concurrent requests.

 

• To verify the number of concurrent login/logout requests, use Cisco Unified Communications Manager Cisco Unified Real-Time Monitoring Tool to view the Requests In Progress counter in the Extension Mobility object.

Error:-[6]-Database Error

Resolution:-

 

• Check whether a large number of requests exists
• If large number of requests exists, the Requests In Progress counter in the Extension Mobility object counter specifies a high value. If the requests are rejected due to large number of concurrent requests, the Requests Throttled counter also specifies a high value.

Error:- [207]-Device Name Empty

OR

Error:- XML Error [4] Parse Error

Resolution:-

Check that the URL that is configured for Cisco Extension Mobility is correct and there should be no space in between.

Error:- 8945 phone does not show EM service

Resolution:-   Set service provisioning to default or internal. Refer Bug CSCtx70127

Download CUCM 9.x SRND

Download the complete book (PDF – 33 MB)

Or

http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/srnd/9x/uc9x.html

#cucm-9-x

CCNP Voice free Training

Cisco Quick Learning Module
CCVP CVOICE
	Introducing Voice over IP
	CTT-TAC: Introduction to Basic Analog Voice over IP
	CTT-TAC: Basic Analog-to-Digital Voice over IP
	CTT-TAC: Analog Voice Internetworking with E&M Signaling
	CTT-TAC: Basic Analog-to-Digital Voice over IP
	Understanding Gateway Dial Peers
	Understanding Dial Plans
CCVP CIPT1
	Implementing Features in Cisco Unified Communications Manager
	Configuring Presence-Enabled Speed Dials and Call Lists
	Implementing Partitions and Calling Search Spaces
CCVP CIPT2
	Implementing AAR for Locations-Based CAC in Cisco Unified Communications Manager 6.0
	Examining Remote Site Redundancy Options
	Implementing TEHO with PSTN Backup in Cisco Unified Communications Manager v6.0
	Cisco Unified Communications Express as Survivable Remote Site Telephony
CCVP TUC
	Gathering Information for Troubleshooting
	Troubleshooting Common Gateway Registration Issues
	Troubleshooting Common Cisco Unity Integration Issues
CCVP QoS
	Introduction to Modular QoS CLI
	Congestion Management Configuring CBWFQ and LLQ
	Congestion Avoidance Introducing RED and WRED

How to reset password cucm

Step 1 Log in to the system with the following username and password:

•Username: pwrecovery

•Password: pwreset

The Welcome to platform password reset window displays.

Step 2 Press any key to continue.

Step 3 If you have a CD or DVD in the disk drive, remove it now.

Step 4 To continue, press any key.

The system tests to ensure that you have removed the CD or DVD from the disk drive.

Step 5 Insert a valid CD or DVD into the disk drive.

The system tests to ensure that you have inserted the disk.

Step 6 After the system verifies that you have inserted the disk, you get prompted to enter one of the following options to continue:

•To reset the administrator password, enter a.

•To reset the security password, enter s.

•To quit, enter q.

Step 7 Enter a new password of the type that you chose.

Step 8 Reenter the new password.

The password must contain at least 6 characters. The system checks the new password for strength. If the password does not pass the strength check, you get prompted to enter a new password.

Step 9 After the system verifies the strength of the new password, the password gets reset, and you get prompted to press any key to exit the password reset utility.

---

Caution The security password on all nodes in a cluster must match. Change the security password on all machines, or the cluster nodes will not communicate.

Calculators

Cisco ASR 1000 Router Calculator

Cisco ISR Business Benefits Calculator

Cisco Power Calculator

Cisco Unified Communications Manager Capacity Tool V4.2

DSP Calculator

IP Subnet Calculator

Nexus 5000 TCO Tool

Unified Communications Sizing Tool

Voice Codec Bandwidth Calculator

Data Center Power Calculator

PUE / DCiE Calculator

http://www.42u.com/measurement/pue-dcie.htm

Efficiency Savings Calculator

http://www.42u.com/efficiency/energy-efficiency-calculator.htm

http://dimension85.com/EN/pue-calculator.html

http://dimension85.com/EN/dcie-calculator.html

#ccie-voice, #ipcc-enterprise

APAC Partner Virtual Enablement(VE) Archive

Event Name	Date	WebEx Recordings	Materials
UC Migration Support Program  Report –   Begin 2010	15-Apr-10	Recording    link
CVP 8.0 – Product Update  session	8-Apr-10	Recording    link
PDI Helpdesk	31-Mar-10	Recording    link	Download
UCCX 8.0 Update	18-Mar-10	Recording    link	Download
Cisco User Connect Licensing	17-Mar-10	Recording    link
Cisco TelePresence Spring  2010 Launch for   TelePresence ATP Partners	12-Mar-10	Recording    link	Download
Cisco Unified Presence 7.x –  India	4-Mar-10	Recording    link	Download
UC on UCS (UC Virtualization –  B&C   Series)	25-Feb-10	Recording    link	Download
Cisco IPVS Products Overview	18-Feb-10	Recording    link	Download
Cisco Unified Presence 7.x –  Feb 2010	10-Feb-10	Recording    link	Download
Cisco Unified Communications  Licensing	9-Feb-10	Recording    link	Download
UC Rapid Deployment Method	4-Feb-10	Recording    link	Download
Cisco Unified Presence 7.x –  Jan 2010	25-Jan-10	Recording    link	Download
DMS 5.2 and MP Update	21-Jan-10	Recording    link	Download
Unified Contact Center  Express (UCCX)	19-Jan-10	Recording    link	Download
TelePresence Business  Acceleration Launch	14-Jan-10	Recording    link	Download
UCCX Demo Remote Capabilities	3-Dec-09	Recording    link	Download
UC Migration to 7.x Hands-on	26-Nov-09	Recording    link	Download
UCCX Design Best Practices	26-Nov-09	Recording    link	Download
DialPlan Changes in CUCM 7.1	19-Nov-09	Recording    link	Download
Cisco Unified Contact Centre  Express 7.x   (UCCX) Hands-on – CHINA	12-Nov-09	Recording    link
Cisco 2900/3900 Series as a  UC Platform	12-Nov-09	Recording    link	Download
CVP Self Service Update	5-Nov-09	Recording    link	Download
CUPS – OCS Integration:  Remote Call   Control	4-Nov-09	Recording    link	Download
Cisco Endpoint Update	29-Oct-09	Recording    link	Download
Unified Communications  Transforming Mid   Market Accounts	28-Oct-09	Recording    link
UCS Services Session	26-Oct-09	Recording    link	Download
Cisco Unified Contact Centre  Express 7.x   (UCCX) Hands-on – AUSTRALIA	12-Oct-09	Recording    link	Download
UC Mobility Update	1-Oct-09	Recording    link	Download
Cisco Unified Contact Centre  Express 7.x   (UCCX) Hands-on – ASIA	28-Sep-09	Recording    link	Download
Speech Connect for Cisco  Unity	24-Sep-09	Recording    link	Download
UCCX 7.0 Features and  Business Application   Examples	17-Sep-09	Recording    link	Download
Video Conferencing 7.0	3-Sep-09	Recording    link	Download
PDI Help Desk	20-Aug-09	Recording    link	Download
Cisco Unified Communication  Services –   Cisco Essential Operate Services & UC Software Subscription	20-Aug-09	Recording    link	Download
Cisco Unified Communications  Manager   Business Edition For Partners	18-Aug-09	Recording    link	Download
Cisco UC Integration for  Microsoft Office   Communicator (CUCIMOC) Hands-on	11-Aug-09	Recording    link	Download
Contact Centre Update	2-Jul-09	Recording    link	Download
VideoConferencing Update  (CUVC5.7)	2-Jul-09	Recording    link	Download
Cisco UC integration for MOC	18-Jun-09	Recording    link	Download
Cisco UC Integration with IBM	18-Jun-09	Recording    link	Download
Presence & Clients Update	18-Jun-09	Recording    link	Download
CallControl Update	4-Jun-09	Recording    link	Download
Endpoints Update	4-Jun-09	Recording    link	Download
Messaging Update	4-Jun-09	Recording    link	Download

#bsoft-bangalore, #ccie-voice

CMBE6k | Cisco Business Edition 6000

This site covers Cisco Business Edition 6000 (formerly Cisco Unified Communications Manager Business Edition 6000) Release 8.5 and higher.

Cisco Business Edition 6000 is designed for organizations with upto 1000 employees. The solution offers premium voice, video, mobility, messaging, presence and contact center features on a single platform and provides core communication capabilities medium-sized businesses need for improved collaboration across the value chain. Enabled by virtualization technology, Cisco Business Edition 6000 consolidates multiple applications on single platform and therefore allows medium business to reduce their lower total cost of ownership and improve productivity of their employees. The high availability features supported by the solution make Cisco Business Edition 6000 ideally suited for companies that require mission critical voice, messaging and contact center capabilities.

Cisco Business Edition 6000 is a packaged solution optimized for medium sized business requirements. It is a specific combination of Cisco Unified Communications Applications on Cisco Unified Computing System that offers medium businesses, improved business agility and reduced total cost of ownership (TCO) through server consolidation, operational efficiency and scale, improved business continuity, and greater investment leverage.

BE 6000 consists of the following foundational elements:

• Cisco Unified Communications Manager
• IM & Presence
• Cisco Unity® Connection
• Cisco Prime Provisioning
• Cisco UC Virtualization Hypervisor
• Cisco Unified Computing System C200 M2/C220 M3 Rack-mount server.

Following applications can be optionally added to Cisco Business Edition 6000 solution.

• Cisco Unified Contact Center Express
• Cisco Unified Attendant Consoles
• Cisco Emergency Responder
• Cisco Telepresence Video Communication Server (Supported only with UCS C220 M3)
• Cisco Paging Server

Cisco Business Edition 6000 supports up to 4 UC applications plus 1 Cisco Prime Provisioning (from the list of applications above) running co-resident on single UCS C200 or UCS C220 hardware platform and supports full featured redundancy for all the core applications over a WAN or LAN environment.

In addition, Cisco Business Edition 6000 integrates with cloud based webex Software-as-a-service offerings including Webex connect IM and presence as well as webex web conferencing.
Here are some key differences between BE 6000 and generic Unified Communications deployment on Unified Computing system environment (“UC on UCS”).

Attributes	Cisco Business Edition 6000	“UC on UCS”/ Specs Based Support
Positioning	Packaged solution optimized for medium business requirements	Enterprise Deployments
	Max Capacity 1000 users	Megacluster 80K users
Platform/Application Choice	UCS C200 or C220 Hardware platform only	UCS-C Series, B-Series Platforms, 3rd party servers
	Core applications: Unified Communications Manager, IM and Presence,  Cisco Unity Connection, Contact Center Express, Cisco Unified Attendant Consoles, Cisco Prime Provisioning, Cisco Emergency Responder, Cisco Telepresence Video Communication server (UCS C220 only), Cisco Paging Server	Full suite of UC on UCS applications, Non UC and 3rd party applications
Installation and Configuration	Factory configured server, Pre-loaded applications (BE 6000 9.x release only), Unified provisioning through embedded Cisco Prime Provisioning	Provisioning through separate native management interface or purchase Cisco Unified Provisioning Manager
Support	Cisco for UCS, UC and Vitualization Hypervisor	Cisco for UC, UCS and UC virtualization hypervisor. VMware, 3rd party server vendors.
Ordering	Single top-level part number, Quoting through Quick Pricing Tool	Separate SKUs for hardware and software licenses
Pricing	Discounted Starter Bundles (25 users), embedded Prime Provisioning and VMware, with options to add Webex Meeting Center, Contact Center Express, Cisco Telepresence Video Communication Server bundles	Buy software and hardware separately.

Bsoft |Bangalore |

#cmbe6k

Integration Microsoft Exchange 2010 UM to Cisco CME 8

In this article we will detail an implementation that we have recently
completed here at UC Integrations.  This article will cover the aspects of
integrating Exchange 2010 with CME 8. We will follow up with detailed
information on integration of Microsoft OCS 2007 R2 as detailed in the topology
diagram below.

Requirements
1 x Cisco 2900 Series Voice Gateway 1 x Microsoft Exchange
2010 Server 1 x Microsoft Exchange 2010 UM Server (Role)
1 x Active Directory
Service Server

Topology

Process Overview

Exchange 2010 UM Server

1. Configure Exchange Server 2010 as per the Microsoft
Technet Deployment Guide.

2. Verify that the Exchange server roles other than the Unified Messaging
server role have been installed and configured.

3. Install the Unified Messaging server role.

4. Optional: Install the Unified Messaging language packs you need on the UM
servers in your organization.

5. Create the required number of UM dial plans for your organization.

6. Create the required number of UM IP gateways.

7. Create a UM Hunt Group

8. Add each UM server that has been installed to the appropriate dial plan.

9. Optional: Configuring mutual TLS

10. Create the required number of auto attendants.

11. Configure the auto attendants in your organization.

12. Create a UM mailbox policy or configure the default UM mailbox policy.

13. Enable users in your organization for Unified Messaging.

14. Optional: Deploy and configure incoming faxing.

Cisco Communications Manager Express

1. Configure Voice Mail Pilot  – > Allows incoming calls from Exchange
UM,  also Allows calling to Exchange using XXXX phone number.

dial-peer voice XXXX voip
description *Exchange Unified
Messaging*
destination-pattern XXXX  session protocol sipv2
session target
ipv4:EXCHANGESERVERIP:5060 session transport tcp
incoming called-number
.
dtmf-relay rtp-nte
codec g711ulaw
fax rate disable
fax protocol
pass-through g711ulaw
no vad

2. Configure Auto Attendant Pilot, and Forward to auto attendant translation
rule.

dial-peer voice YYYY voip
description *Exchange Auto
Attendant”
translation-profile outgoing auto_attendant
destination-pattern
YYYY
session protocol sipv2
session target
ipv4:EXCHANGESERVERIP:5060
session transport tcp
dtmf-relay
rtp-nte
codec g711ulaw
fax rate disable
fax protocol pass-through
g711ulaw
no vad

voice translation-profile auto_attendant translate redirect-called 7

voice translation-rule 7
rule 1 /.*/ //

3. Configure Voicemail Profile

telephony-service
voicemail XXXX
mwi relay

4. Configure Message Waiting Indicator

sip-ua
mwi-server ipv4:255.255.255.255 expires 3600 port 5060 transport
udp unsolicited

5. Configure phones for message waiting indicator.

ephone-dn  1 octo-line
number ZZZZ
mwi sip

6. Voice Service Voip

voice service voip
gcid
cti csta mode basic
no cti
shutdown
callmonitor
allow-connections h323 to h323
allow-connections
h323 to sip
allow-connections sip to h323
allow-connections sip to
sip
no supplementary-service h450.2
no supplementary-service h450.3
no
supplementary-service h450.7
no supplementary-service sip
moved-temporarily
no supplementary-service sip refer
fax protocol t38
version 0 ls-redundancy 0 hs-redundancy 0 fallback
none
sip
header-passing
registrar server expires max 1200 min 60

Further updates will be applied as applicable inluding screen shots of an
installation of Exchange 2010 UM Server and any caveats.

#ccie-voice