Cisco Cisco Expressway
Discovering Unified Communications servers and services
The Expressway-C must be configured with the address details of the Unified Communications
services/nodes that are going to provide registration, call control, provisioning, voicemail, messaging, and
presence services to MRA users.
services/nodes that are going to provide registration, call control, provisioning, voicemail, messaging, and
presence services to MRA users.
IM and Presence Service configuration is not required if you're deploying the hybrid model, as these services
are provided by the WebEx cloud.
are provided by the WebEx cloud.
Note: The connections configured in this procedure are static. You must refresh the configuration on the
Expressway-C after you reconfigure or upgrade any of the discovered Unified Communications nodes.
Expressway-C after you reconfigure or upgrade any of the discovered Unified Communications nodes.
Go to
Configuration > Unified Communications > <UC server type>
and click Refresh servers.
Trusting the certificates presented to the Expressway-C
If TLS verify mode is On when discovering Unified Communications services, then you must configure the
Expressway-C to trust the certificates presented by the IM and Presence Service nodes and Unified CM
servers.
Expressway-C to trust the certificates presented by the IM and Presence Service nodes and Unified CM
servers.
1. Determine the relevant CA certificates to upload:
l
If the servers' tomcat and CallManager certificates are CA-signed, the Expressway-C's trusted CA list
must include the root CA of the certificate issuer.
must include the root CA of the certificate issuer.
l
If the servers are using self-signed certificates, the Expressway-C's trusted CA list must include the
self-signed certificates from all discovered IM and Presence Service nodes, Cisco Unity Connection
servers, and Unified CM servers.
self-signed certificates from all discovered IM and Presence Service nodes, Cisco Unity Connection
servers, and Unified CM servers.
2. Upload the required certificates to the Expressway-C (
Maintenance > Security certificates > Trusted
CA certificate
).
3. Restart the Expressway-C (
Maintenance > Restart options
).
Discovering IM and Presence Service nodes
1. On Expressway-C, go to
Configuration > Unified Communications > IM and Presence Service
nodes
.
The page lists any IM and Presence Service nodes that have already been discovered.
2. Add the details of an IM and Presence Service database publisher node:
a. Click New.
b. Enter the address of the IM and Presence Service database publisher node.
b. Enter the address of the IM and Presence Service database publisher node.
You can enter an FQDN or an IP address, but we recommend using the FQDN when TLS verify
mode is On.
mode is On.
c. Enter the Username and Password of an account that can access this server.
Note: These credentials are stored permanently in the Expressway database. The corresponding
IM and Presence Service user must have the Standard AXL API Access role.
IM and Presence Service user must have the Standard AXL API Access role.
d. [Recommended] Leave TLS verify mode switched On to ensure Expressway verifies the node's
tomcat certificate (for XMPP-related communications).
e. [Optional] Select which deployment this node/cluster will belong to.
The Deployment field does not show if you have not created multiple deployments. All nodes belong
to the default deployment if you choose not to use multiple deployments.
to the default deployment if you choose not to use multiple deployments.
Unified Communications Mobile and Remote Access via Cisco Expressway Deployment Guide (X8.5)
Page 22 of 50
Configuring mobile and remote access on Expressway