Configuring Incoming ACL in Cisco Unified Presence Administration

Available Languages

Download Options

  • PDF     (356.1 KB)
    View with Adobe Reader on a variety of devices
Updated:August 25, 2008

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Configuring Incoming ACL in Cisco Unified Presence Administration

Table Of Contents

Configuring Incoming ACL in Cisco Unified Presence Administration

Allowed ACL Formats

Configuring Incoming ACL

Finding Incoming ACL Entries

Deleting an Incoming ACL Entry


Configuring Incoming ACL in Cisco Unified Presence Administration

January 27, 2009

Allowed ACL Formats

Configuring Incoming ACL

Finding Incoming ACL Entries

Deleting an Incoming ACL Entry

Allowed ACL Formats

In the Incoming Access Control List (ACL), you can configure patterns that control which incoming hosts and domains can access Cisco Unified Presence without authentication. Cisco Unified Presence accepts a range of IP address patterns in addition to fully qualified names of incoming hosts or domains. The Allow directive followed by "from" determines which hosts can access the server.

When configuring incoming ACL settings, you can select from the formats described in Table 6-1.

Table 6-1 ACL Address Patterns

Host Address Description
Configuration Example

All hosts

Allow from all

A partial domain name

Allow from company.com

A full IP address

Allow from 10.1.2.3

A partial IP address

Allow from 10.1

A network/netmask pair

Allow from 10.1.0.0/255.255.0.0

A network/nnn CIDR specification

Allow from 10.1.0.0/16

Note The netmask consists of nnn high-order 1 bits.


Configuring Incoming ACL

Before You Begin

Configure an address which will be added to the SIP Proxy list of allowed incoming addresses. Any address added to this list will bypass digest authentication.

Once you add a federated domain entry to the database, an Incoming ACL entry for the federated domain is automatically added. You do not need to manually perform these configuration steps.

By default, system behavior is to deny all incoming requests. If you check the CUP CVP Support checkbox on the Presence > Settings window, you are allowed to modify the default system-generated entries.

Procedure

Step 1 Perform one of the following actions:

If you want to:
Action

Add an incoming ACL

a. Select System > Security > Incoming ACL.

b. Click Add New.

Update an incoming ACL entry

a. Find the record as described in Finding Incoming ACL Entries.

b. Edit the record as required.


Step 2 Enter the incoming ACL configuration settings as described in Table 6-2.

Table 6-2 Incoming ACL Configuration Settings 

Field
Description

Description

Specifies a general description of the ACL entry.

Maximum characters: 128

Address Pattern

Specifies the address or pattern of the incoming host or domain as either an IP address or a fully qualified domain name.


Step 3 Complete one of the following actions to save the data:

a. Click the Save icon that displays in the tool bar in the upper, left corner of the window.

b. Click Save at the bottom of the window.

Related Topics

Allowed ACL Formats

Chapter 11, "Configuring Settings in Cisco Unified Presence Administration."

Finding Incoming ACL Entries

Because you might have several ACL entries in your network, Cisco Unified Presence lets you locate specific ACL entries on the basis of specific criteria.

Procedure

Step 1 Select System > Security > Incoming ACL.

Step 2 To find all records in the database, ensure the dialog box is empty; go to Step 4.

Step 3 To filter or search records, complete one of the following actions:

From the first list box, select a search parameter.

From the second list box, select a search pattern.

Specify the appropriate search text, if applicable.

Step 4 Click Find.

Step 5 From the list of records that display, complete or more of the following actions:

If you want to:
Action

View a record

Click the link for the record.

Reverse the sort order in the record list

Click the up or down arrow, if available, in the list header.


Related Topics

Web Browser Sessions, page 1-7

Deleting an Incoming ACL Entry

Note You cannot edit or delete an incoming ACL list that is associated with a Federated Domain entry. These ACL lists are automatically added when you add a Federated Domain entry to the database.

Procedure

Step 1 Find the ACL entry.

Step 2 From the list of matching records, select the ACL entry that you want to delete.

Step 3 Perform one of the following actions to delete the ACL entry:

If you want to:
Action

Delete a selected record

a. Check the appropriate record.

b. Complete one of the following actions:

Click Delete Selected at the bottom of the window.

Click the Delete Selected Item icon that displays in the tool bar in the upper, left corner of the window.

Delete all records

a. Check Select All.

b. Click Delete Selected.


Troubleshooting Tips

If the ACL entry is not in use, Cisco Unified Presence deletes it. If it is in use, a message displays.

Related Topics

Finding Incoming ACL Entries

Was this Document Helpful?

FeedbackFeedback

Contact Cisco

This Document Applies to These Products