advertisement
Mobile and Remote Access Through Cisco Expressway Deployment Guide
Mobile and Remote Access Overview
Mobile and Remote Access Overview
Cisco Unified Communications Mobile and Remote Access is a core part of the Cisco Collaboration Edge
Architecture. It allows endpoints such as Cisco Jabber to have their registration, call control, provisioning, messaging and presence services provided by Cisco Unified Communications Manager (Unified CM) when the endpoint is not within the enterprise network. The Expressway provides secure firewall traversal and line-side support for Unified CM registrations.
The overall solution provides:
■
Off-premises access: a consistent experience outside the network for Jabber and EX/MX/SX Series clients
■
Security: secure business-to-business communications
■
Cloud services: enterprise grade flexibility and scalable solutions providing rich WebEx integration and
Service Provider offerings
■
Gateway and interoperability services: media and signaling normalization, and support for non-standard endpoints
Figure 1 Unified Communications: Mobile and Remote Access
Note that third-party SIP or H.323 devices can register to the Expressway-C and, if necessary, interoperate with
Unified CM-registered devices over a SIP trunk.
7
advertisement
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Related manuals
advertisement
Table of contents
- 5 Preface
- 5 Change History
- 6 Related Documentation
- 7 Mobile and Remote Access Overview
- 8 Deployment Scope
- 8 Jabber Client Connectivity Without VPN
- 8 Deployment Scenarios
- 9 Single Network Elements
- 10 Single Clustered Network Elements
- 10 Multiple Clustered Network Elements
- 11 Hybrid Deployment
- 11 Unsupported Deployments
- 13 Unsupported Features When Using Mobile and Remote Access
- 13 Unsupported Endpoint Features
- 14 Unsupported Expressway Features and Limitations
- 14 Unsupported Contact Center Features
- 15 Configuration Overview
- 15 Prerequisites
- 16 Configuration Summary
- 20 Unified Communications Prerequisites
- 20 Configuring a Secure Traversal Zone Connection for Unified Communications
- 22 Server Certificate Requirements for Unified Communications
- 25 Configuring Mobile and Remote Access on Expressway
- 25 Installing Expressway Security Certificates and Setting Up a Secure Traversal...
- 25 Setting Up the Expressway-C
- 28 Discover Unified Communications Servers and Services
- 32 About the HTTP Server Allow List on Expressway-C
- 34 Setting Up the Expressway-E
- 35 Using Deployments to Partition Unified Communications Services
- 37 Single Sign-On (SSO) Over the Collaboration Edge
- 38 Single Sign-On Prerequisites
- 39 High Level Task List
- 40 Importing the SAML Metadata from the IdP
- 40 Associating Domains with an IdP
- 41 Exporting the SAML Metadata from the Expressway-C
- 41 Configuring IDPs
- 42 Enabling Single Sign-On at the Edge
- 44 Dial via Office-Reverse through MRA
- 47 Checking the Status of Unified Communications Services
- 47 Mobile and Remote Access Port Reference
- 49 Additional Information
- 49 Maintenance Mode on the Expressway
- 49 Unified CM Dial Plan
- 49 Deploying Unified CM and Expressway in Different Domains
- 50 SIP Trunks Between Unified CM and Expressway-C
- 50 Configuring Secure Communications
- 51 Media Encryption
- 51 Limitations
- 52 Protocol Summary
- 52 Clustered Expressway Systems and Failover Considerations
- 52 Authorization Rate Control
- 53 Credential Caching
- 53 Unified CM Denial of Service Threshold
- 53 Expressway Automated Intrusion Protection
- 54 Partial Support for Cisco Jabber SDK
- 54 Appendix 1: Troubleshooting
- 54 General Techniques
- 57 Expressway Certificate / TLS Connectivity Issues
- 57 Cisco Jabber Sign In Issues
- 58 Expressway Returns 401 Unauthorized Failure Messages
- 59 Call Failures due to 407 Proxy Authentication Required or 500 Internal Server...
- 59 Call Bit Rate is Restricted to 384 kbps / Video Issues when Using BFCP (Prese...
- 59 Endpoints Cannot Register to Unified CM
- 59 IM and Presence Service Realm Changes
- 59 No Voicemail Service (403 Forbidden Response)
- 59 403 Forbidden Responses for Any Service Requests
- 60 Client HTTPS Requests are Dropped by Expressway
- 60 Unable to Configure IM&P Servers for Remote Access
- 60 Invalid SAML Assertions
- 60 502 Next Hop Connection Failed Messages
- 60 Allow List Rules File Reference
- 61 Allow List Tests File Reference
- 63 Cisco Legal Information