Cisco Cisco Unified Contact Center Management Portal 8.5(2) Leaflet

8-3

Cisco Unified Contact Center Enterprise 8.0 SRND

Chapter 8 Securing Cisco Unified Contact Center Enterprise

Introduction to Security

•

Intrusion Prevention

As an important defense layer, the Unified CCE Cisco Security Agent policy can be used to provide
"day-zero" threat protection for servers. It helps to reduce operational costs by identifying,
preventing, and eliminating known and unknown security threats.

•

Patch Management

A system is typically not connected to a live network until all security updates have been applied. It
is important for all hosts to be kept up-to-date with Microsoft (Windows, SQL Server, Internet
Explorer, and so forth) and other third-party security patches.

For most of these security layers, the Unified CCE solution supports a number of capabilities to enforce
the defense-in-depth paradigm illustrated in

Figure 8-1

. However, what Cisco cannot control or enforce

is your enterprise policies and procedures for deploying and maintaining a secure Unified CCE solution.

Figure 8-1

Defense-In-Depth

Platform Differences

Before discussing how to design the various security layers required for a Unified CCE network, this
section introduces the differences that are inherent in the applications making up the Unified CCE
solution.

The Unified CCE solution consists of a number of application servers that are managed differently. The
primary servers, those with the most focus in this document, are the Routers, Loggers (also known as
Central Controllers), Peripheral Gateways, Administration & Data Servers, WebView Servers, and so
forth. These application servers can be installed only on a standard (default) operating system
installation. All installations must be done on Windows Server 2003 Standard or Enterprise Edition. The