About Security for Cisco Unified SRST Manager

 

About Security

Security certificates are required to provide a secure connection between systems. Security is needed for the following:

  • Between Cisco Unified Communications Manager and Cisco Unified SRST Manager
  • Between Cisco Unified SRST Manager and the Cisco Unified SRST or CUCME device at the branch site

About Security Certificates

Use one of these methods to generate and sign security certificates:

  • Trust chains. Trust chains use Certificate Authorities (CAs) to simplify large deployments. Install security certificates for the Cisco Unified Communications Manager and Cisco Unified SRST Manager that were all signed by a CA and the connections are all part of a trusted chain.
  • Self-signed certificates. Use self-signed certificates for each device. In this case, Cisco Unified SRST Manager needs the security certificate from each device to which it connects.

The TLS security certificate can be represented in one of two formats: distinguished encoding rules (DER) and privacy-enhanced mode (PEM).

Retrieving Security Certificates from Cisco Unified Communications Manager

note.gif

Noteblank.gif Use this method to retrieve the certificates from the Cisco Unified Communications Manager system. You will later add this certificate to the Cisco Unified SRST Manager system.


Procedure


Step 1blank.gif Log in to the Cisco Unified OS Administration interface.

Step 2blank.gif Select Security > Certificate Management.

Step 3blank.gif Click Find to show the certificates.

Step 4blank.gif Click the *.pem or *.der link for the desired certificate.

Step 5blank.gif Click Download to save the certificate to the local file system.