Cisco Cisco Unified Contact Center Enterprise 9.0(2) Installation Guide
duplexed peer is located at another site, that NIC is named 1C. If each of two sites contain
duplexed NICs, the two at one site are named 1A and 1B and the two at the other site are named
1C and 1D.
duplexed NICs, the two at one site are named 1A and 1B and the two at the other site are named
1C and 1D.
Security Considerations
A discussion of security and ICM software can be found in the Security Best Practices Guide
for Cisco ICM/IPCC Enterprise & Hosted Editions, which you have presumably already used
in association with the Staging Guide for Cisco ICM/IPCC Enterprise & Hosted Editions while
installing your Microsoft Windows software and setting up your Windows Active Directory
services for ICM software. However, a few specific security topics are mentioned in the following
sections.
for Cisco ICM/IPCC Enterprise & Hosted Editions, which you have presumably already used
in association with the Staging Guide for Cisco ICM/IPCC Enterprise & Hosted Editions while
installing your Microsoft Windows software and setting up your Windows Active Directory
services for ICM software. However, a few specific security topics are mentioned in the following
sections.
Cisco Security Agent (CSA)
A standalone Cisco Security Agent (CSA) for ICM software is available as a part of ICM/IPCC
7.0(0). The standalone Cisco Security Agent provides intrusion detection and prevention for
Cisco ICM software. Cisco Security Agent removes potential known and unknown ("Day Zero")
security risks that threaten enterprise networks and applications. It dramatically reduces
downtime, widespread attack propagation and clean-up costs. The Agent is provided free of
charge by Cisco Systems for use with release 7.0(0) of the Cisco ICM software. While Cisco
highly recommends its installation, it is optional. For more information refer to the Cisco Security
Agent Installation/Deployment Guide for Cisco ICM/IPCC Enterprise & Hosted Editions.
7.0(0). The standalone Cisco Security Agent provides intrusion detection and prevention for
Cisco ICM software. Cisco Security Agent removes potential known and unknown ("Day Zero")
security risks that threaten enterprise networks and applications. It dramatically reduces
downtime, widespread attack propagation and clean-up costs. The Agent is provided free of
charge by Cisco Systems for use with release 7.0(0) of the Cisco ICM software. While Cisco
highly recommends its installation, it is optional. For more information refer to the Cisco Security
Agent Installation/Deployment Guide for Cisco ICM/IPCC Enterprise & Hosted Editions.
Some considerations to keep in mind are the following:
•
If you plan to use Cisco Security Agent, you must always use the default directories when
installing any software on a server. You need not choose the default disk drive if an option
is available (for example, C: or D:), but you must use default directories.
installing any software on a server. You need not choose the default disk drive if an option
is available (for example, C: or D:), but you must use default directories.
•
You must disable the Cisco Security Agent service before performing any software installation.
This includes not only Cisco ICM software, but also third-party software that you intend to
use with the ICM software. Ensure that the service does not get enabled at any time during
the installation or upgrade. Failure to do so may cause problems with the installation or
upgrade. After installing or upgrading the software, you must reenable the Cisco Security
Agent service. With the service disabled, the Agent no long provides intrusion detection for
the server.
This includes not only Cisco ICM software, but also third-party software that you intend to
use with the ICM software. Ensure that the service does not get enabled at any time during
the installation or upgrade. Failure to do so may cause problems with the installation or
upgrade. After installing or upgrading the software, you must reenable the Cisco Security
Agent service. With the service disabled, the Agent no long provides intrusion detection for
the server.
Note: The actions described in the last bullet do not have to be done manually, since ICM Setup
will offer to disable and reenable CSA for you.
will offer to disable and reenable CSA for you.
Secure Socket Layer (SSL)
By default, Secure Socket Layer (SSL) authentication is enabled on Windows 2003 systems for
the web applications: WebView (refer to the WebView Installation and Administration Guide
the web applications: WebView (refer to the WebView Installation and Administration Guide
ICM Installation Guide for Cisco ICM Enterprise Edition Release 7.0(0)
16
Introduction
Security Considerations