Cisco Cisco TelePresence Management Suite (TMS) Version 15 Release Notes
New features and changes in 14.0
Cisco TelePresence Management Suite 14.1.1 Software Release Notes
Page 13 of 21
New features and changes in 14.0
Release statement
This is a controlled distribution release aimed at United States of America Federal Government customers requiring a
JITC-compliant version of Cisco TMS.
JITC-compliant version of Cisco TMS.
This release includes specific features intended for use in environments that require using Cisco TMS as approved
on the DISA Approved Products list.
on the DISA Approved Products list.
Improved platform security
Cisco TMS Windows Services now run under the Network Service account as default instead of the Local
System account.
System account.
Configuration and control files are no longer stored in the same directory as user data.
Encryption of the Database Connection string has been upgraded to encrypt the entire connection string and
now uses a FIPS-compliant encryption module.
now uses a FIPS-compliant encryption module.
Configuration of the Cisco TMS setting for the software download folder has been moved from
Administrative
Tools > Configuration > General Settings >
Software FTP Directory in the web interface to the TMS Tools
application under
Directory Locations.
Improved website security
Additional protection against Cross-site Request Forgery and Cross-site Scripting attacks has been added.
Permissions on the Cisco TMS web directories have been tightened.
The default log folder is now C:\Program Files\TANDBERG\TMS\data\Logs. The previous location was
C:\Program Files\TANDBERG\TMS\wwwTMS\data\Logs.
C:\Program Files\TANDBERG\TMS\wwwTMS\data\Logs.
All HTTPS communication is now restricted to TLS v1.0 or later. Support for SSL v3.0 and earlier has been
removed.
removed.
TLS client certificate validation in Cisco TMS has been introduced. When endpoints try to establish a TLS
connection to the /tms/public website:
connection to the /tms/public website:
•
IIS validates the certificate against its trusted list of certificates.
•
Cisco TMS validates that the CN field of the certificate corresponds to the hostname used to contact the
system. Any system that tries to impersonate another system will fail this check.
system. Any system that tries to impersonate another system will fail this check.
Support for Certificate Revocation Checking has been added. When enabled, all certificates checked by the
server will also check the revocation status of the certificate with its Certificate Authority.
server will also check the revocation status of the certificate with its Certificate Authority.
Client Certificate support for Cisco TMS-initiated communication to managed systems has been added. When
enabled, Cisco TMS will provide a certificate if challenged when communicating to managed systems.
enabled, Cisco TMS will provide a certificate if challenged when communicating to managed systems.
Customized Banner text can now be added at the top and/or bottom of web pages and all pdf and excel
document outputs.
document outputs.
Improved database security
Encryption of authentication credentials stored in the database has been upgraded to use a FIPS-compliant
encryption module. This new method uses a unique encryption key generated during installation of Cisco TMS.
encryption module. This new method uses a unique encryption key generated during installation of Cisco TMS.
Support for running Cisco TMS with Windows Authenticated logins has been added. This requires additional
manual configuration of the SQL database and windows server after initial installation of Cisco TMS. This
functionality is recommended for JITC-compliant deployments only.
manual configuration of the SQL database and windows server after initial installation of Cisco TMS. This
functionality is recommended for JITC-compliant deployments only.
Updated TMS Tools application
The TMS Tools application has been redesigned to improve usability and incorporate the new features introduced in
14.0.
14.0.