Polycom 7000 manual To change the security settings, Go to Admin Local Cluster Security Settings

Skip validation of certificates for

This option may be configured in any security mode, and affects inbound

inbound connections

connections from entities like web browsers and API clients.

If this option is turned off, you can only connect to the Polycom RealPresence

DMA system if your browser presents a client certificate issued by a CA that

the system trusts (this is known as mutual TLS for administrative

connections).

Turn this option off only if:

• You’ve implemented a complete public key infrastructure (PKI) system,

including a CA server, client software (and optionally hardware, tokens, or

smartcards), and the appropriate operational procedures.

• The CA’s public certificate is installed in the Polycom RealPresence DMA

system so that it trusts the CA.

• All authorized users, including yourself, have a client certificate signed by

the CA that authenticates them to the Polycom RealPresence DMA

system.

Allow forwarding of IPv6 ICMP

This option may be configured in any security mode.

destination unreachable

If this option is off, the Polycom RealPresence DMA system has an internal

messages

firewall rule that blocks outbound destination unreachable messages.

If this option is on, that firewall rule is disabled.

Note: The Polycom RealPresence DMA system currently doesn’t send such

messages, regardless of this setting.

Allow IPv6 ICMP echo reply

This option may be configured in any security mode.

messages to multicast addresses

If this option is off, the Polycom RealPresence DMA system doesn't reply to

echo request messages sent to multicast addresses (multicast pings).

If this option is on, the system responds to multicast pings.

Polycom, Inc.

52