Cisco Cisco TelePresence Management Suite (TMS) Version 15 Release Notes
New features and changes in 14.0
Cisco TelePresence Management Suite 14.1 Software Release Notes
Page 13 of 20
Permissions on the Cisco TMS web directories have been tightened.
The default log folder is now C:\Program Files\TANDBERG\TMS\data\Logs. The previous location was
C:\Program Files\TANDBERG\TMS\wwwTMS\data\Logs.
C:\Program Files\TANDBERG\TMS\wwwTMS\data\Logs.
All HTTPS communication is now restricted to TLS v1.0 or later. Support for SSL v3.0 and earlier has been
removed.
removed.
TLS client certificate validation in Cisco TMS has been introduced. When endpoints try to establish a TLS
connection to the /tms/public website:
connection to the /tms/public website:
•
IIS validates the certificate against its trusted list of certificates.
•
Cisco TMS validates that the CN field of the certificate corresponds to the hostname used to contact the
system. Any system that tries to impersonate another system will fail this check.
system. Any system that tries to impersonate another system will fail this check.
Support for Certificate Revocation Checking has been added. When enabled, all certificates checked by the
server will also check the revocation status of the certificate with its Certificate Authority.
server will also check the revocation status of the certificate with its Certificate Authority.
Client Certificate support for Cisco TMS-initiated communication to managed systems has been added. When
enabled, Cisco TMS will provide a certificate if challenged when communicating to managed systems.
enabled, Cisco TMS will provide a certificate if challenged when communicating to managed systems.
Customized Banner text can now be added at the top and/or bottom of web pages and all pdf and excel
document outputs.
document outputs.
Improved database security
Encryption of authentication credentials stored in the database has been upgraded to use a FIPS-compliant
encryption module. This new method uses a unique encryption key generated during installation of Cisco TMS.
encryption module. This new method uses a unique encryption key generated during installation of Cisco TMS.
Support for running Cisco TMS with Windows Authenticated logins has been added. This requires additional
manual configuration of the SQL database and windows server after initial installation of Cisco TMS. This
functionality is recommended for JITC-compliant deployments only.
manual configuration of the SQL database and windows server after initial installation of Cisco TMS. This
functionality is recommended for JITC-compliant deployments only.
Updated TMS Tools application
The TMS Tools application has been redesigned to improve usability and incorporate the new features introduced in
14.0.
14.0.
Configuration
TMS Database Connection Settings / Provisioning Extension Database Connection Settings
These sections have been updated to include authentication configuration fields.
Directory Locations
This is where the software download folder location is specified.
Security
Encryption Key
This section has been added to support the new encryption key for credentials in the database. The encryption key
which will decrypt the encrypted data can be changed or entered here.
which will decrypt the encrypted data can be changed or entered here.
TLS Client Certificates
This section has been added to support the new TLS client certificate feature Cisco TMS uses for authenticating to
systems. The x509 certificates Cisco TMS will use are specified here.
systems. The x509 certificates Cisco TMS will use are specified here.
Advanced Security Settings
Cisco TelePresence Management Suite JITC Configuration Deployment Guide details how to activate these settings
and perform additional Windows and Cisco TMS configuration changes that will make your installation comply with
JITC operational guidelines.
and perform additional Windows and Cisco TMS configuration changes that will make your installation comply with
JITC operational guidelines.
Optional Features Control: