Cisco Cisco TelePresence Management Suite (TMS) Version 15 Maintenance Manual
If there are no certificates listed here, check that the account you are using to run Cisco TMS Tools has read access
to the private keys of the certificates.
to the private keys of the certificates.
You must also ensure that all accounts the Cisco TMS services are logged on as have read access to the private keys
of the certificates.
of the certificates.
To add a self-signed certificate under Cisco TMS Tool, perform the following steps:
1.
Open mmc.exe from the start menu.
2.
Select File > Add/ Remove snap-in, Add or remove snap-in dialog appears.
3.
From Available snap-ins:, choose Certificates.
4.
Click Add, Certificate snap-in dialog appears.
5.
In the Certificate snap-in dialog, choose My User Account.
6.
Click Finish.
7.
Repeat step 3,4, and 5, then choose Computer Account.
8.
Click Next, Select Computer dialog appears.
9.
Click Finish.
10.
Click OK in the Add or remove snap-in dialog.
11.
In mmc.exe, expand Console Root > Certificates(Local Computer) > Personal>Certificates to find the newly
added self-signed certificate.
added self-signed certificate.
12.
Right click on the certificate of interest and select All Tasks > Manage Private Keys, a dialog for setting
permissions on the private keys of the selected certificate appears.
permissions on the private keys of the selected certificate appears.
13.
Click Add, Select Users, Computers, Service Accounts, or Groups window appears.
14.
Enter NETWORK SERVICE in the text box below Enter the object name to select (examples): and click Check
Names. A dialog box to enter account credentials appears.
Names. A dialog box to enter account credentials appears.
15.
Provide the default credentials with the username: administrator and password: sat4lab.
16.
Click OK.
17.
Click OK in the Select Users, Computers, Service Accounts, or Groups dialog. Make sure that the read and
full control permissions are checked under Allow column for Network Service.
full control permissions are checked under Allow column for Network Service.
18.
Repeat steps 11,12 and 13. Enter SERVICE in the text box below Enter the object name to select (examples):
19.
Click Check Names > OK.
20.
Click Apply > OK in certificate permissions dialog.
You can view the newly added self-signed certificate in TMS Tools > Security Settings > TLS Certificates.
.
Advanced Security Settings
It is possible to run Cisco TMS in a reduced functionality, high security mode by making changes to these settings.
■
The settings must only be modified by a Cisco TMS administrator.
■
Incorrect application of these settings can stop Cisco TMS from working altogether.
Sections and
fields
fields
Description
Optional
Features
Control
Features
Control
Table 179 Cisco TMS Tools advanced security settings
279
Cisco TelePresence Management Suite Administrator Guide
Cisco TMS Tools