Cisco Unified Communications Manager Security Guide, Release 8.5(1)
Configuring a VPN Profile
Downloads: This chapterpdf (PDF - 350.0KB) The complete bookPDF (PDF - 6.01MB) | Feedback

Configuring a VPN Profile

Table Of Contents

Configuring a VPN Profile

VPN Profile Overview

Finding a VPN Profile

Configuring a VPN Profile


Configuring a VPN Profile


This chapter contains information on the following topics:

VPN Profile Overview

Finding a VPN Profile

Configuring a VPN Profile

VPN Profile Overview

Use the VPN Profile window to create a profile that you assign to the Cisco Unified IP Phone by using the Common Phone Profile Configuration window.

Finding a VPN Profile

To find a VPN profile, perform the following procedure:

Procedure


Step 1 In Cisco Unified Communications Manager Administration, choose Advanced Features > VPN > VPN Profile.

The Find and List VPN Profiles window displays. Records from an active (prior) query may also display in the window.

Step 2 To find all records in the database, ensure the dialog box is empty; go to Step 3.

To filter or search records

From the first drop-down list box, choose a search parameter.

From the second drop-down list box, choose a search pattern.

Specify the appropriate search text, if applicable.


Note To add additional search criteria, click the + button. When you add criteria, the system searches for a record that matches all criteria that you specify. To remove criteria, click the - button to remove the last added criterion or click the Clear Filter button to remove all added search criteria.


Step 3 Click Find.

All matching records display. You can change the number of items that display on each page by choosing a different value from the Rows per Page drop-down list box.

Step 4 From the list of records that display, click the link for the record that you want to view.


Note To reverse the sort order, click the up or down arrow, if available, in the list header.


The window displays the item that you choose.


Configuring a VPN Profile

To add, update, or copy a VPN profile, perform the following procedure:

Procedure


Step 1 In Cisco Unified Communications Manager Administration, choose Advanced Features > VPN > VPN Profile.

Step 2 Perform one of the following tasks:

To add a new profile, click Add New in the Find window and continue with Step 3.

To copy an existing profile, locate the appropriate profile as described in "Finding a VPN Profile" section, click the Copy button next to the VPN profile that you want to copy, and continue with Step 3.

To update an existing profile, locate the appropriate VPN profile as described in "Finding a VPN Profile" section and continue with Step 3.

When you click Add New, the configuration window displays with the default settings for each field. When you click Copy, the configuration window displays with the copied settings.

Step 3 Enter the appropriate settings as described in Table 20-1.

Step 4 Click Save.


Table 20-1 VPN Profile Configuration Settings 

Field
Definition

Name

Enter a name for the VPN profile.

Description

Enter a description for the VPN profile.

Enable Auto Network Detection

When you check this check box, the VPN client can only run when it detects that it is out of the corporate network.

Default: Disabled.

MTU

Enter the size, in bytes, for the Maximum Transmission Unit (MTU).

Default: 1290 bytes.

Fail to Connect

This field specifies the amount of time to wait for log-in or connect operations to complete while the system creates the VPN tunnel.

Default: 30 seconds

Enable Host ID Check

When you check this check box, the gateway certificate subjectAltName or CN must match the URL to which the VPN client is connected.

Default: Enabled

Client Authentication Method

From the drop-down list, choose the client authentication method:

User and password

Password only

Certificate (LSC or MIC)

Enable Password Persistence

When you check this check box, a user password gets saved in the phone until either a failed log-in attempt occurs, a user manually clears the password, or the phone resets or loses power.