Cisco Cisco TelePresence Video Communication Server Expressway
Enabling endpoints registered on the video network to call MOC/Lync clients registered on OCS/Lync
Cisco VCS Deployment Guide: Microsoft OCS 2007 R2, Lync 2010 and Cisco VCS X7.0
Page 47 of 104
Outbound only
Leave unselected.
Throttle as server
Select this check box. It reduces the message throttling as it knows
the trusted device is a server not a client.
the trusted device is a server not a client.
Treat As Authenticated
Select this check box.
and click OK.
6. Repeat steps 4 and 5 for each “OCS/Lync gateway” VCS peer and, if configuring TLS, the FQDN
of the “OCS/Lync gateway” cluster.
7. Repeat steps 2 to 6 for all pools that can directly communicate to Cisco VCS.
OCS: Configure OCS media encryption capabilities
By default OCS mandates the use of encrypted media. The headers used in OCS SRTP are however
different from those used by video network devices.
different from those used by video network devices.
VCS has the capability to carry out on-the-fly modification of these headers if the Enhanced OCS
Collaboration option key is enabled on the “OCS/Lync gateway” VCS.
Collaboration option key is enabled on the “OCS/Lync gateway” VCS.
The choice of how to configure OCS’s encryption capabilities will depend on:
Is the connection between OCS and the “OCS/Lync gateway” VCS TLS?
- if it is not TLS, then crypto keys will not pass (they may only be sent over a secure – encrypted
signaling link), encryption must not be set to require on OCS
- if it is not TLS, then crypto keys will not pass (they may only be sent over a secure – encrypted
signaling link), encryption must not be set to require on OCS
does the “OCS/Lync gateway” VCS have the Enhanced OCS Collaboration option key enabled?
- if no, encryption must not be set to require on OCS
- if no, encryption must not be set to require on OCS
is the “OCS/Lync gateway” using the B2BUA?
- if no, encryption must be the same on OCS and in the video network
- if the B2BUA is in use and Encryption (in B2BUA Advanced settings) is set to Auto, the B2BUA
will allow calls with video side encrypted and OCS side not, OCS side encrypted and video side
not, both sides encrypted and both sides unencrypted
- if no, encryption must be the same on OCS and in the video network
- if the B2BUA is in use and Encryption (in B2BUA Advanced settings) is set to Auto, the B2BUA
will allow calls with video side encrypted and OCS side not, OCS side encrypted and video side
not, both sides encrypted and both sides unencrypted
do all video endpoints support encrypted media, and will they offer encrypted media when
initiating calls?
- if no, and the B2BUA is not in use, or is not configured to allow encryption to be different on
OCS and in the video network, encryption must not be set to require on OCS
initiating calls?
- if no, and the B2BUA is not in use, or is not configured to allow encryption to be different on
OCS and in the video network, encryption must not be set to require on OCS
In OCS the values: SupportEncryption, RequireEncryption, DoNotSupportEncryption are allowed.
For the OCS Director pool and every OCS FEP pool:
1. Select the Pool.
2. Select
Properties > Pool Properties
.
3. Select the required Encryption level.
4. Click Apply.