McDewey

Purpose Command or Action Configure SIP OAuth registered phones in MRA mode. This step is not applicable for Cisco Jabber device. Upload CA Certificate to the Phone Edge Trust Use this procedure to upload the root certificate of Tomcat signed certificate to the Phone Edge Trust from the publisher node. The certificate is only visible on the publisher node. This procedure is performed only for Cisco Phones and not applicable for Cisco Jabber. Note Procedure Step 1 From Cisco Unified OS Administration, choose Security > Certificate Management. Step 2 Click Upload Certificate/Certificate chain. Step 3 In the Upload Certificate/Certificate chain window, from the Certificate Purpose drop-down list choose Phone-Edge-Trust. Step 4 In the Upload File field, click Browse and upload the certificate. Step 5 Click Upload. Enable OAuth Access Token for Devices This section is applicable from Release 14 onwards. Important Use this procedure to enable OAuth access token for phones. Configure this enterprise parameter only for OAuth support for SIP registrations for phones. The phone certificate (MIC or LSC) must be valid for SIP OAuth to work. Note Procedure Step 1 From Cisco Unified CM Administration, choose System > Enterprise Parameters. Step 2 In SSO and OAuth Configuration section, ensure that the value of OAuth Access Token for Devices drop-down list is set to Implicit:Already registered devices. Note Security Guide for Cisco Unified Communications Manager, Release 15 and SUs 98 Basic System Security Upload CA Certificate to the Phone Edge Trust