Cisco Cisco Expressway
IM and Presence Servers configuration is not required if you're deploying the hybrid model, as these services
are provided by the WebEx cloud.
are provided by the WebEx cloud.
Note: The connections configured in this procedure are static. You must refresh the configuration on the
Expressway-C after you reconfigure or upgrade any of the discovered Unified Communications nodes.
Expressway-C after you reconfigure or upgrade any of the discovered Unified Communications nodes.
Go to
Configuration > Unified Communications > <UC server type>
and click Refresh servers.
Trusting the certificates presented to the Expressway-C
If TLS verify mode is On when discovering Unified Communications services, then you must configure the
Expressway-C to trust the certificates presented by the IM and Presence Servers and Unified CM servers.
Expressway-C to trust the certificates presented by the IM and Presence Servers and Unified CM servers.
1. Determine the relevant CA certificates to upload:
l
If the servers' tomcat and CallManager certificates are CA-signed, the Expressway-C's trusted CA list
must include the root CA of the certificate issuer.
must include the root CA of the certificate issuer.
l
If the servers are using self-signed certificates, the Expressway-C's trusted CA list must include the
self-signed certificates from all discovered IM and Presence Servers nodes, Cisco Unity Connection
servers, and Unified CM servers.
self-signed certificates from all discovered IM and Presence Servers nodes, Cisco Unity Connection
servers, and Unified CM servers.
2. Upload the required certificates to the Expressway-C (
Maintenance > Security certificates > Trusted
CA certificate
).
3. Restart the Expressway-C (
Maintenance > Restart options
).
Discovering IM and Presence Servers
1. On Expressway-C, go to
Configuration > Unified Communications > IM and Presence Servers
.
The page lists any IM and Presence Servers that have already been discovered.
2. Add the details of an IM and Presence Servers database publisher node:
a. Click New.
b. Enter the address of the IM and Presence Servers database publisher node.
b. Enter the address of the IM and Presence Servers database publisher node.
You can enter an FQDN or an IP address, but we recommend using the FQDN when TLS verify
mode is On.
mode is On.
c. Enter the Username and Password of an account that can access this server.
Note: These credentials are stored permanently in the Expressway database. The corresponding
IM and Presence Servers user must have the Standard AXL API Access role.
IM and Presence Servers user must have the Standard AXL API Access role.
d. [Recommended] Leave TLS verify mode switched On to ensure Expressway verifies the node's
tomcat certificate (for XMPP-related communications).
e. Click Add address.
The system attempts to contact the publisher and retrieve details of its associated nodes.
Unified Communications Mobile and Remote Access via Cisco Expressway Deployment Guide (X8.2)
Page 16 of 40
Configuring mobile and remote access on Expressway