Device Authentication | Polycom 3725-76302-001O instruction

Call Server Configuration

See also:

Hunt Groups on page 258

Add Hunt Group Dialog Box on page 259

Edit Hunt Group Dialog Box on page 260

Edit Alias Dialog Box

The Edit Alias dialog box lets you change an alias value assigned to the hunt group. Edit the alias in the Value box and click OK.

Aliases should be specified by their fully qualified dial string. For example, to specify that H.323 callers can call the hunt group by dialing 1234, enter 1234. To specify that SIP callers can call the hunt group by dialing 1234, enter sip:1234@mydomain.com.

See also:

Hunt Groups on page 258

Add Hunt Group Dialog Box on page 259 Edit Hunt Group Dialog Box on page 260

Device Authentication

Device authentication enhances security by requiring devices registering with or calling the Polycom RealPresence DMA system to provide credentials that the system can authenticate. In turn, the Polycom RealPresence DMA system may need to authenticate itself to an external SIP peer or gatekeeper.

All authentication configurations are supercluster-wide, but note that the default realm for SIP device authentication is the cluster’s domain as specified on the Admin > Local Cluster > Network Settings page (or sip.dma if no domain is specified). This allows each cluster in a supercluster to have its own realm for challenges.

The Device Authentication page has two tabs, Inbound Authentication and Shared Outbound Authentication.

Inbound Authentication

On the Inbound Authentication tab, you can:

●Configure specific SIP digest authentication settings for SIP devices.

●Maintain the Call Server’s local inbound device authentication list. This list is used for both H.235 authentication (H.323 devices) and SIP digest authentication (SIP devices).

●Click the Signaling settings link to go to the Signaling Settings page, where you actually enable device authentication for H.323, SIP, or both (see Signaling Settings).

Shared Outbound Authentication

On the Shared Outbound Authentication tab, you can maintain the Call Server’s general list of authentication credentials, which it uses to authenticate itself on behalf of calling devices to external SIP peers for which the appropriate device-specific credentials haven’t been defined.

Polycom, Inc.

261

Image 261

Polycom 3725-76302-001O manual Device Authentication, Inbound Authentication, Shared Outbound Authentication

Contents

Polycom RealPresence DMA 7000 System Page Contents System Security Local Cluster Configuration Device Management Integrations with Other Systems 152 MCU Management Conference Manager Configuration Call Server ConfigurationSuperclustering Site Topology 278 Users and Groups System Management and Maintenance Contents Contents Page Polycom RealPresence DMA System Snmp Support System Reports 419 Introduction to the Polycom RealPresence DMA System Polycom RealPresence DMA System’s Primary FunctionsConference Manager RealPresence Platform API Call Server SVC Conferencing Support Two-server Cluster Configuration Polycom RealPresence DMA System’s Three Configurations Single-server Configuration System Capabilities and Constraints System Port Usage Port Protocol DescriptionEmbedded DNS on Send Usage Data on Polycom Solution Support Accessing the Polycom RealPresence DMA SystemWorking in the Polycom RealPresence DMA System Settings Dialog Box Menu/Icon Admin Provisioner AuditorField Input Requirements Menu/Icon Admin Provisioner Auditor Menu/Icon Admin Provisioner Auditor Menu/Icon Admin Provisioner Auditor License Information Open Source SoftwareModifying Open Source Code To replace an Lgpl library with your modified version Confirming configuration System configuration Additional DNS Records for SIP Proxy Additional DNS Records for the H.323 Gatekeeper Additional DNS Records for the Optional Embedded DNS Feature Verify That DNS Is Working for All Addresses License the Polycom RealPresence DMA System Set Up Signaling License the RealPresence DMA System, Appliance EditionLicense the RealPresence DMA System, Virtual Edition Set Up Security Set Up MCUs Connect to Microsoft Active Directory Set Up Conference Templates Test the System How Certificates Work Security Certificates Overview DER System Security Frequently Asked Questions Column Description Certificate Settings Certificate Information Dialog Box Certificate Signing Request Dialog BoxField Description Add Certificates Dialog Box Certificate Details Dialog BoxSection Description Install a Certificate Authority’s Certificate Certificate ProceduresTo install a certificate for a trusted root CA Go to Admin Local Cluster Certificates Actions list, select Add Certificates To create a certificate signing requestActions list, select Display Details Actions list, select Create Certificate Signing Request Install a Certificate in the RealPresence DMA System To remove a Trusted Root CA’s certificate Remove a Certificate from the RealPresence DMA System Actions list, select Delete Certificate Security Settings Field Description Maximum security High securityCustom security Servers, not to allow ongoing use of unencrypted connections Subscribing endpoints are conference participants Go to Admin Local Cluster Security Settings To change the security settings On the Troubleshooting Utilities menu, Top is removed Consequences of Enabling Maximum Security Mode System Security Login Policy Settings Field Description Password Management Local PasswordPassword Complexity Session Unlimited Local User AccountField Description Account Lockout Account Inactivity Access Policy Settings BannerCustom To reset system passwords Reset System Passwords Wait a few minutes to log back in. See also Network Settings Local Cluster Configuration Field Description Dhcp Server Settings Field Description Shared Management NetworkTurn on Auto-negotiation or set Speed and Duplex manually General System Network Shared Signaling Network IPv6address%eth0 Routing Configuration Dialog Box Time Settings Licenses for the Appliance Edition LicensesField Description Active License Activation Keys Licenses for the Virtual Edition Cluster Network SettingsDMA Host Licensing Server SIP Signaling Signaling Settings Device Authentication SIP Device AuthenticationUntrusted SIP Call Handling Configuration Field Description Settings Signaling Settings Fields SIP Settings Field Add Guest Port Dialog Box Edit Guest Port Dialog Box Prefix number for this entry Add Guest Prefix Dialog Box Edit Guest Prefix Dialog Box Logging Settings Alerting Settings Local Cluster Configuration ProceduresAlert ID Threshold Condition Description To request a software activation key code for each server Add LicensesSelect Product Activation Click Generate To configure signaling Configure SignalingGo to Admin Local Cluster Licenses Go to Admin Local Cluster Signaling Settings Under Unauthorized prefixes, click Add Under Unauthorized ports, click Add Configure Logging To configure loggingAutomatically Send Usage Data Enable or Disable Automatic Data Collection See the Collected DataTo see the collected data Active Calls Device Management Call Details Dialog Box Tab/Field/Column Description Call Info Tab/Field/Column Description Bandwidth On the Call Server SettingsCall Events Subscription Events Endpoints Tab/Field/Column Description Property ChangesQoS Registration policy script see Registration Policy on Server Settings on Command DescriptionRegistration Policy on Registrations Names/Aliases in a Mixed H.323 and SIP Environment Device Management Add Endpoint Dialog Box Edit Device Dialog Box Edit Devices Dialog Box Add Alias Dialog Box Edit Alias Dialog BoxAssociate User Dialog Box Site Link Statistics Site Statistics External Gatekeeper Column Description External Gatekeeper Add External Gatekeeper Dialog Box Authentication Mode Edit External Gatekeeper Dialog BoxPostliminary This script to open the Script Debugging Dialog Box for Add External SIP Peer Dialog Box External SIP Peer UDP Field Description External SIP Peer Domain List Field Description Postliminary AuthenticationTemporarily select Use customized script To header options Lync Integration Scheduled conferences is checkedExternal Registration Edit External SIP Peer Dialog Box Host/domain name Field Description Domain List Field Description Authentication To Header Format Options SIP Peer Postliminary Output Format Options Request-URI Header Format Options Default To header for Microsoft. Equivalent to template Default Request-URI for Microsoft. Equivalent to template Free Form Template VariablesVariable Description To Header and Request-URI Header Examples Add Authentication Dialog BoxOriginal To Header Template Result Original Request-URI Header Template Result Add Outbound Registration Dialog Box Edit Authentication Dialog Box Template Variables on Edit Outbound Registration Dialog Box External H.323 SBC Device Management on Edit External H.323 SBC Dialog Box on Column Description External H.323 SBC Add External H.323 SBC Dialog Box Edit External H.323 SBC Dialog Box MCUs MCU ManagementPage Polycom, Inc 126 See SVC Conferencing Support on On page 234. It can register again Add MCU Dialog Box Field Description External MCU Prefix Dialog Box on Profile. See Isdn Gateway Selection Process on Gateway Dialing Prefix Dialog Box on page 272. In this case, Edit MCU Dialog Box Field Description Gateway ProfilesMedia IP Addresses Polycom, Inc 134 Polycom, Inc 135 Direct dial-in prefixsession profile Polycom, Inc 137 Edit Session Profile Dialog Box Add Session Profile Dialog Box Isdn Gateway Selection Process MCU ProceduresTo view information about an MCU To add an MCU To edit an MCU To delete an MCU MCU Pools Add MCU Pool Dialog Box CommandEdit MCU Pool Dialog Box Column To add an MCU Pool MCU Pool ProceduresTo edit an MCU Pool To delete an MCU Pool MCU Pool Orders Add MCU Pool Order Dialog Box MCU Selection Process Edit MCU Pool Order Dialog Box MCU Availability and Reliability Tracking 24% To view the MCU Pool Orders list MCU Pool Order ProceduresTo add an MCU Pool Order To edit an MCU Pool Order To delete an MCU Pool Order Microsoft Active Directory Integration Integrations with Other Systems Microsoft Active Directory Connection StatusReport Report report Users ReportActive Directory Connection Understanding Base DN on Enterprise Chairperson and Conference Passcode Generation Field Description Enterprise Conference Room ID Generation To integrate with Active Directory Active Directory Integration Procedure Polycom, Inc 158 Integrations with Other Systems Understanding Base DN Polycom, Inc 161 Adding Passcodes for Enterprise Users About the System’s Directory Queries When you click Update on the Microsoft Active Directory User Search Group SearchGlobal Group Membership Search Attribute Replication Search Configurable Attribute Domain Search Domain Search Service Account Search Microsoft Lync 2013 Integration Lync 2010 vs. Lync 2013 IntegrationScheduled Conferences Lync and non-Lync Endpoint Collaboration Automatic Contact Creation and Configuration Lync 2010 and 2013 Client / Server Feature Support Considerations and Requirements for Lync 2013 IntegrationPolycom, Inc 169 Required Information Integrate RealPresence DMA and Lync Install Certificates for the Lync Server Enable Windows Remote ShellSynchronize Lync Server and RealPresence DMA System Time Add the Lync Pool as an External SIP Peer To enable the Dial by Lync conference ID dial rule Enable the Dial by Lync Conference ID Dial Rule Configure System-wide Presence and Contact Creation Settings Diagnose Presence Problems Optional Edit Presence settings for Groups or Specific VMRsAdd the RealPresence DMA System to the Lync Topology Microsoft Exchange Server Integration Microsoft Exchange Server Exchange Server Integration Procedure Resource Management System Integration Page Resource Management System Join Resource Management System Dialog Box Resource Management System Integration Procedures To integrate with a resource management system Juniper Networks SRC Juniper Networks SRC Integration To configure SRC integration Juniper Networks SRC Integration Procedure Conference Settings Conference Manager Configuration Conference Manager Configuration Create Polycom conference contacts check box is enabled Contacts presence settings belowPresence Publishing Field Maximum Polycom conference contacts to publish Default Polycom conference contacts presence settings To specify conference settingsGo to Admin Conference Manager Conference Settings Select Publish presence for Polycom conference contacts Remove Contacts from Active Directory Dialog Box Conference Templates Two Types of TemplatesStandalone Templates Template Priority About Conference IVR Services Cascading for Bandwidth About Cascading Cascading for Size Conference Templates List RMX General Settings Field Description Common SettingsAdd Conference Template Dialog Box See Two Types of Templates on Video streams from each device to each device Field Description LPR RMX Gathering Settings  Conference mode is set to AVC only Video switching is selectedField Description RMX Video Quality  TIP compatibility is set to either None or Video Only RMX Video Settings Telepresence mode is YesOptimized RMX Skins RMX Audio Settings Field Description RMX Conference IVR See Shared Number Dialing onRMX Recording Cisco Codian Edit Conference Template Dialog Box Polycom, Inc 207 Field Description LPR RMX Gathering Settings Field Description RMX Video Quality Polycom, Inc 212 Polycom, Inc 213 Field Description RMX Conference IVR Cisco Codian Go to Admin Conference Manager Conference Templates Conference Templates ProceduresSelect Layout Dialog Box To select a video frames layout To edit a conference template Click the RMX General Settings tabTo change a conference template’s priority To delete a conference template IVR Prompt Sets Prompt File Name Prompt Text Shared Number Dialing Polycom, Inc 221 Field Description Add Virtual Entry Queue Dialog Box Edit Virtual Entry Queue Dialog Box Add Direct Dial Virtual Entry Queue Dialog Box Edit Direct Dial Virtual Entry Queue Dialog Box About Superclustering Superclustering RealPresence DMAs Polycom, Inc 228 Following table describes the fields on Join Supercluster Dialog Box Supercluster ProceduresTo create or join a supercluster Go to Network RealPresence DMAs Actions list, click Join Supercluster Actions list, select Remove from Supercluster To remove a cluster from the supercluster About the Call Server Capabilities Call Server Configuration Call Server Settings Field Description General SettingsModifications on Call Server Configuration See External Gatekeeper on Domains Gatekeeper Blacklist Settings Mycompany domains, this would not match eng.mycompany.com Dial Rules Test Dial Rules Dialog Box Callersipuri Default Dial Plan and Suggestions for Modifications Edit Site Dialog Box on Rule Effect H323xxxx@enterprisepartner.com Field Dial Rule Add Dial Rule Dialog Box Block Blocks the call Resolve to IP address Field Description Preliminary Conference template Conference template configured in Admin Conference ManagerAvailable SIP peers / Selected SIP peers selection area  a Type of Microsoft Resolve to external address Field Description Dial Rule Edit Dial Rule Dialog Box Block Blocks the call Resolve to IP address Polycom, Inc 250 Variable Initial value Preliminary/Postliminary Scripting Callersitearea Dial Rule Action Output SIP Headers Usage example Script Debugging Dialog Box for Preliminaries/Postliminaries Sample Preliminary and Postliminary Scripts Strip Prefix SIP Dialstring = Callersitecountrycode + Dialstring Site Based Numeric Nicknames SIP Hunt Groups Add Hunt Group Dialog Box Field Description General InfoHunt Group Members Edit Hunt Group Dialog Box Inbound Authentication Device AuthenticationShared Outbound Authentication On the Inbound Authentication tab, you can Field Description Inbound Authentication Edit Device Authentication Dialog Box Add Device Authentication Dialog BoxField Description Shared Outbound Authentication Field Description Device Authentication Registration Policy Noncompliant Registration Policy Scripting Epdefinedincma EPISIPV4 Sample Registration Policy Scripts Script Debugging Dialog Box for Registration Policy Scripts If EPH323DIALEDDIGITSALIAS0.length!= Return Noncompliant Polycom, Inc 270 Prefix Service Add Simplified Isdn Gateway Dialing Prefix Dialog Box Edit Simplified Isdn Gateway Dialing Prefix Dialog Box Edit Vertical Service Code Dialog Box Embedded DNS Following table describes the fields on the Embedded DNS To enable DNS publishing To configure history record retention History Retention SettingsRecord Type Retention Limit When Limit Is Reached Number of Records Purged Call Server Configuration on About Site Topology Site Topology Sites Site Topology Field Site Info Description Site Information Dialog BoxDevice Types Subnets Bandwidth Settings Field Description General Info General SettingsTerritory Settings Add Site Dialog Box Isdn Outbound Dialing Field Description Isdn Number Assignment Isdn Range Assignment for did dialing method Isdn Range Assignment for gateway extension dialing methodRouting SIP Routing Edit Site Dialog Box Field Description General Info General Settings Field Description Isdn Number Assignment Field Description Add Subnet Dialog Box Edit Subnet Dialog Box Site Links Edit Site Link Dialog Box Add Site Link Dialog Box Add Site-to-Site Exclusion Wizard Site-to-Site ExclusionsTo add a site-to-site exclusion Go to Network Site Topology Site-to-Site Exclusions Column/Section Description Territories Territory Summary pane Add Territory Dialog BoxAssociated Sites pane Field Description Territory Info Edit Territory Dialog Box Network Clouds Add Network Cloud Dialog BoxField Cloud Info Field Description Associated Sites Edit Network Cloud Dialog BoxSee Add Site Link Dialog Box on Field Cloud Info Description Site Topology Configuration Procedures Go to Network Site Topology SitesGo to Network Site Topology Territories Polycom, Inc 300 Role Description User Roles Overview Adding Users Overview Users Are in the Local domain See Add User Dialog Box on Add User Dialog Box Associated Endpoints Rooms Dialog Box on Edit User Dialog Box Field Description Associated RolesConference Passcodes Prompted see Authentication Required Dialog Box on Polycom, Inc 309 Authentication Required Dialog Box Select Associated Endpoints Dialog BoxConference Rooms Dialog Box Its conferences. See Conference Templates on Add Conference Room Dialog Box Conference Settings on Identity information to the right Conference Settings Defined on the Admin Conference Manager Conference Settings Publish presence  Do not publish presence User Dialog Box on Conference see Edit Conference Template Dialog Box on Edit Conference Room Dialog Box Polycom, Inc 318 Polycom, Inc 319 Dial-out Participants list Users Procedures Add Dial-out Participant Dialog BoxEdit Dial-out Participant Dialog Box To add a local user To find a user or usersTo edit a user Go to User Users Conference Rooms Procedures To delete a local userTo add a conference room to a user To delete one of a user’s custom conference rooms To edit one of a user’s conference rooms Groups Import Enterprise Groups Dialog Box Conference Templates onFrom the Search results box Edit Group Dialog Box See Conference Settings on Manager Conference Settings Admin Conference Manager Conference SettingsSetting on the User Users Manage Conf Rooms dialog box Boxes on the Admin Conference Manager Conference Settings Actions list, click Import Enterprise Groups Enterprise Groups Procedures To terminate a user’s login session Login Sessions Change Password Dialog Box Administrator Responsibilities Management and Maintenance Overview Administrative Best Practices Auditor ResponsibilitiesAuditor Best Practices Regular archive of backups Recommended Regular MaintenanceProvisioner Responsibilities General system health and capacity checks Microsoft Active Directory health Security configuration Certificates DashboardNetwork usage data export CDR export Call Server Active Calls Pane Active Directory Integration Pane Call Server Registrations Pane Cluster Info PaneConference History Max Participants Pane Conference Manager Usage Pane Conference Manager MCUs Pane Exchange Server Integration Pane License Status PaneResource Management System Integration Pane Signaling Settings Pane Supercluster Status PaneTerritory Status Pane User Login History Pane AlertsAlert No clusters assigned to list of territories Cluster cluster is orphaned Polycom, Inc 344 Formatted string from server See also Alerts on Zero enterprise conference rooms exist on cluster cluster Polycom, Inc 348 Polycom, Inc 349 Polycom, Inc 350 Certificates. See also Cluster cluster The server certificate has expired Cluster cluster One or more CA certificates have expired Polycom, Inc 353 DMA is not licensed for any calls Cannot connect to licensing server lserver for cluster Cluster cluster a private network error exists on server Polycom, Inc 356 Polycom, Inc 357 Server server CPU utilization 50% and 75% Server server CPU utilization 75%Cluster cluster System version differs between servers Polycom, Inc 359 Cluster cluster Local users differ between servers MCU MCUname is currently out of service MCU MCUname is currently busied outMCU MCUname has count warnings MCU mcu disconnect rate is 1 MCU MCUname disconnected MCU mcu disconnect rate is MCU mcu call failure rate is 0.4MCU mcu call failure rate is MCU mcu is connected with no port capacity No territories configured to host conference rooms Ongoing conference VMR on MCU MCU failed reason Conference VMR on MCU MCU failed to start reason Polycom, Inc 367 Polycom, Inc 368 Polycom, Inc 369 Date and time that the log file archive was created System Log Files To download a log archive to your PC or workstation System Logs ProceduresTo manually roll the system logs To delete a system log archive Ping Troubleshooting UtilitiesTraceroute Top Diagnostics for your Dell Server StatsNTP Status Backing Up and Restoring SHA1 Confirm Restore Dialog Box Backup and Restore Procedures To download a backup fileActions list, click Download Selected To create a new backup file To upload a backup fileGo to Maintenance Backup and Restore To restore from a backup file on the cluster Page Upgrading the Software Following table describes the parts of the Software Upgrade Basic Upgrade Procedures To install an upgradeGo to Maintenance Software Upgrade Return to Maintenance Software Upgrade To roll back an upgrade, restoring the previous version Polycom, Inc 385 Incompatible Software Version Supercluster Upgrades Simplified Supercluster Upgrade Complete Service Outage Factors to Consider for an Incremental Supercluster Upgrade Polycom, Inc 388 Polycom, Inc 389 Complex Supercluster Upgrade Some Service Maintained Expanding an Unpatched System Adding a Second Server Expanding a Patched System Replacing a Failed Server Shutting Down and RestartingTo replace a failed server in a two-server cluster Go to Maintenance Shutdown and Restart To restart or shut down one or both servers in a clusterTo start up a shut-down cluster Call History Alert History Originator Dial String Destination Start Time End Time Export History Conference History Associated Calls Export History Property Changes Conference Events Exporting CDR Data Call Detail Records CDRsCall Record Layouts To download CDRs YYYY-MM-DDTHHMMSS.FFF+-ZHHMM 1024+768+384 486BUSY Here Conference Room Dialog Box on 720p30 Conf Conference Record Layouts Polycom RealPresence DMA System on Value from the Conference room pass-through to CDR fieldConference room VMR see Edit Conference Room Dialog Box on Registration History Report To find a device or devices Registration History Procedures Active Directory Integration Report Active Directory Integration All DomainsGroups with Partially Loaded or No Membership Information Orphaned Groups and Users Report Orphaned Groups and Users ProceduresTo remove orphaned group data from the system To remove orphaned user data from the system Conference Room Errors Report To download conference room errors data Exporting Conference Room Errors Data Enterprise Passcode Errors Report Exporting Enterprise Passcode Errors Data To download enterprise passcode errors dataNetwork Usage Report Exporting Network Usage Data Field Description To download network usage data Snmp Framework Snmp Overview Configure Snmp Snmp NotificationsSnmp Versions To enable the Snmp agent Enable the Snmp AgentGo to Admin Local Cluster Snmp Settings Setting Description Go to Admin Local Cluster Snmp Settings Click Add User Add an Snmp Notification UserTo add a notification user Add an Snmp Notification Agent Edit Notification User Dialog BoxTo add an Snmp notification agent to the system Click Add Agent Edit Notification Agent Dialog Box Download MIBs Go to Admin Snmp Settings Click Download MIBsAvailable Snmp MIBs To download the MIB package for a DMA system