Chapter 17 Configuring Virtual Private Networks
Sample IOS configuration summary
Router(config)# crypto key generate rsa
Router(config)# crypto pki trustpoint <name>
•Register the generated certificate with Cisco Unified Communications Manager.
Example:
Router(config)# crypto pki export <name> pem terminal
Copy the text from the terminal and save it as a .pem file and upload it to the Managing
Certificate part of the CUCM.
Step 3 Install Anyconnect on IOS.
Download anyconnect package from cisco.com and install to flash
Example:
router(config)#webvpn install svc
Step 4 Configure the VPN feature. You can use the Sample IOS configuration summary bellow to guide you with the configuration.
Note To use the phone with both certificate and password authentication, create a user with the phone MAC address. Username matching is case sensitive. For example:
username
Sample IOS configuration summary
You can use the following sample IOS configuration for VPN client on IP phone as a general guideline to creating your own configurations. The configuration entries can change over time.
Current configuration : 4648 bytes
!
!Last configuration change at 13:48:28 CDT Fri Mar 19 2010 by test
version 15.2
service timestamps debug datetime localtime
no service
!hostname of the IOS
hostname vpnios
!
!Specifying the image to be used by IOS – boot image boot system flash
logging buffered 21474836
|
| Cisco Unified Communications Manager Security Guide |
|
| |
|
|
| |||
|
|
|
|
| |
|
|
|
| ||