McDewey

Multi-vendor documentation library · semantic search · MCP endpoint at /mcp

Page 291

↗ View in doc context
page
291
source
cucm/v15/security-guide/security-guide.md
chunk_id
cucm::v15::security-guide::security-guide::292

Description Setting Enter 1-128 alphanumeric characters (a-zA-Z0-9). The Instance ID identifies the user for the certificate operation. You can configure multiple connections (instances) of an application.To secure the connection between the application and CTIManager, ensure that each instance that runs on the application PC (for end users) or server (for application users) has a unique certificate. This field relates to the CAPF Profile Instance ID for Secure Connection to CTIManager service parameter that supports web services and applications. Instance ID From the drop-down list, choose one of the following options: • No Pending Operation—Displays when no certificate operation is occurring. (Default Setting) • Install/Upgrade—Installs a new or upgrades an existing Locally Significant Certificate for the application. Certificate Operation The authentication mode for the Install/Upgrade certificate operation specifies By Authentication String, which means CAPF installs/upgrades or troubleshoots a locally significant certificate only when the user/administrator enters the CAPF authentication string in the JTAPI/TSP Preferences window. Authentication Mode Manually enter a unique string or generate a string by clicking the Generate String button. Ensure that the string contains 4 to 10 digits. To install or upgrade a Locally Significant Certificate, you must enter the authentication string in the JTAPI/TSP preferences GUI on the applicationPC. This string supports one-time use only; after you use the string for the instance, you cannot use it again. Authentication String If you want CAPF to automatically generate an authentication string, click the Generate String button. The 4- to10-digit authentication string displays in the Authentication String field. Generate String This field specifies the sequence of the key for CAPF. Select one of the following values from the drop-down list: • RSA Only • EC Only • EC Preferred, RSA Backup Note When you add a phone based on the value in Key Order, RSA Key Size, and EC Key Size fields, the device security profile is associated with the phone. If you select the EC Only value with the EC Key Size value of 256 bits then the device security profile appends with EC-256 value. Key Order Security Guide for Cisco Unified Communications Manager, Release 15 and SUs 273 Advanced System Security CAPF Settings