This chapter provides information about VPN profile setup.
The VPN menu and its options are not available in the U.S. export unrestricted version of Cisco Unified Communications Manager.
About VPN Profile Setup
Use the VPN Profile window to create a profile that you assign to the Cisco Unified IP Phone by using the Common Phone Profile Configuration window.
Cisco Unified Communications
Manager Administration, choose
Features > VPN > VPN Profile.
and List VPN Profiles window appears. Records from an active (prior)
query may also appear in the window.
To find all
records in the database, do not enter any search criteria.
To filter or
first drop-down list, choose a search parameter.
second drop-down list, choose a search pattern.
appropriate search text, if applicable.
additional search criteria, click the
+ button. When you add criteria, the system searches
for a record that matches all criteria that you specify. To remove criteria,
– button to remove the last added criterion or click
Clear Filter button to remove all added search
records appear. You can change the number of items that appear on each page by
choosing a different value from the
per Page drop-down list.
From the list of
records that appears, click the link for the record that you want to view.
To reverse the
sort order, click the up or down arrow, if available, in the list header.
displays the item that you choose.
update, or copy a VPN profile, perform the following procedure:
In Unified Communications Manager Administration, choose Advanced Features > VPN > VPN Profile.
Perform one of
the following tasks:
To add a new
To copy an
existing profile, locate the appropriate profile and click the
Copy button next to the VPN profile that you want to
To update an
existing profile, specify the appropriate filters in the Find VPN Profile Where, click Find, and modify the settings.
Add New, the configuration window appears with the
default settings for each field. When you click
Copy, the configuration window appears with the
Configure the fields in the VPN Profile Configuration window. See the Related Topics section for more information about the fields and their configuration options.
What to do next
Fields for VPN Client
Enter a name for the VPN profile.
Enter a description for the VPN profile.
Enable Auto Network Detect
When you check this check box, the VPN client can only run when
it detects that it is out of the corporate network.
Enter the size, in bytes, for the Maximum Transmission Unit
Default: 1290 bytes.
Fail to Connect
This field specifies the amount of time to wait for login or
connect operations to complete while the system creates the VPN tunnel.
Default: 30 seconds
Enable Host ID Check
When you check this check box, the gateway certificate
subjectAltName or CN must match the URL to which the VPN client is connected.
Client Authentication Method
From the drop-down list, choose the client authentication
User and password
Certificate (LSC or MIC)
Enable Password Persistence
When you check this check box, a user password gets saved in the
phone until either a failed login attempt occurs, a user manually clears the
password, or the phone resets or loses power.