Cisco ASA Series Cli Configuration Manual page 1329
Software version 9.0 for the services module
Hide thumbs
Also See for ASA Series:
- Configuration manual (429 pages) ,
- Getting started (31 pages) ,
- Mount and connect (12 pages)
Table of Contents
Advertisement
Chapter 1
Configuring Cisco Intercompany Media Engine Proxy
Commands
Step 6
hostname(config)# crypto ca authenticate trustpoint
Example:
hostname(config)# crypto ca authenticate
local-ent-ucm
Step 7
hostname(config)# tls-proxy proxy_name
hostname(config-tlsp)# server trust-point
proxy_trustpoint
hostname(config-tlsp)# client trust-point
proxy_trustpoint
hostname(config-tlsp)# client cipher-suite
aes128-sha1 aes256-sha1 3des-sha1 null-sha1
Example:
hostname(config)# tls-proxy local_to_remote-ent
hostname(config-tlsp)# server trust-point
local-ent-ucm
hostname(config-tlsp)# client trust-point local-ent
hostname(config-tlsp)# client cipher-suite
aes128-sha1 aes256-sha1 3des-sha1 null-sha1
Step 8
hostname(config-tlsp)# exit
Step 9
hostname(config)# tls-proxy proxy_name
hostname(config-tlsp)# server trust-point
proxy_trustpoint
hostname(config-tlsp)# client trust-point
proxy_trustpoint
hostname(config-tlsp)# client cipher-suite
aes128-sha1 aes256-sha1 3des-sha1 null-sha1
Example:
hostname(config)# tls-proxy remote_to_local-ent
hostname(config-tlsp)# server trust-point local-ent
hostname(config-tlsp)# client trust-point
local-ent-ucm
hostname(config-tlsp)# client cipher-suite
aes128-sha1 aes256-sha1 3des-sha1 null-sha1
Step 10
hostname(config-tlsp)# exit
Step 11
hostname(config)# uc-ime uc_ime_name
hostname(config-uc-ime)# ucm address ip_address
trunk-security-mode secure
Example:
hostname(config)# uc-ime local-ent-ime
hostname(config-uc-ime)# ucm address 192.168.10.30
trunk-security-mode secure
Configuring Cisco Intercompany Media Engine Proxy
Purpose
Imports the certificate from local Cisco UCM.
Where trustpoint is the trustpoint for the local Cisco
UCM.
Paste the certificate downloaded from the local
Cisco UCM. This certificate enables the ASA to
validate the certificate that Cisco UCM sends in the
TLS handshake.
Updates the TLS proxy for outbound connections.
Where proxy_name is the name you entered in
Step 1
of the task .
Where proxy_trustpoint for the server trust-point
command is the name you entered in
procedure.
Where proxy_trustpoint for the client trust-point
command is the name you entered in
task .
Note
In this step, you are creating different
trustpoints for the client and the server.
Exits from TLS Proxy Configuration mode.
Updates the TLS proxy for inbound connections.
Where proxy_name is the name you entered in
Step 5
of the task .
Where proxy_trustpoint for the server trust-point
command is the name you entered in
task .
Where proxy_trustpoint for the client trust-point
command is the name you entered in
procedure.
Exits from TLS Proxy Configuration mode.
Updates the Cisco Intercompany Media Engine
Proxy for trunk-security-mode.
Where
is the name you entered in
uc_ime_name
Step 1
of the task .
Only perform this step if you entered nonsecure in
Step 3
of the task .
Cisco ASA Series CLI Configuration Guide
Step 4
of this
Step 2
of the
Step 2
of the
Step 4
of this
1-25
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
