Cisco Cisco TelePresence Video Communication Server Expressway 관리 매뉴얼
Configuring search rules to use an external
service
service
The configuration process to set up the VCS to use an external policy service for search rules (dial plan) is
broken down into the following steps:
broken down into the following steps:
n
Configure the policy service to be used by search rules.
n
Configure the relevant search rules to direct a search to the policy service.
Configuring a policy service to be used by search rules
1. Go to
Configuration > Dial plan > Policy services
.
2. Click New.
3. Configure the fields on the
Create policy service
page as follows:
Field
Description
Usage tips
Name
The name of the policy service.
Description
An optional free-form description of the policy
service.
service.
The description appears as a tooltip if you
hover your mouse pointer over a policy
service in the list.
hover your mouse pointer over a policy
service in the list.
Protocol
The protocol used to connect to the policy
service.
service.
The default is HTTPS.
The VCS automatically supports HTTP to
HTTPS redirection when communicating
with the policy service server.
HTTPS redirection when communicating
with the policy service server.
Certificate
verification
mode
verification
mode
When connecting over HTTPS, this setting
controls whether the certificate presented by
the policy server is verified.
controls whether the certificate presented by
the policy server is verified.
If On, for the VCS to connect to a policy server
over HTTPS, the VCS must have a root CA
certificate loaded that authorizes that server’s
server certificate. Also the certificate's Subject
Common Name or Subject Alternative Name
must match one of the Server address fields
below.
over HTTPS, the VCS must have a root CA
certificate loaded that authorizes that server’s
server certificate. Also the certificate's Subject
Common Name or Subject Alternative Name
must match one of the Server address fields
below.
The VCS’s root CA certificates are loaded
via (
via (
Maintenance > Security certificates
> Trusted CA certificate
).
HTTPS
certificate
revocation list
(CRL)
checking
certificate
revocation list
(CRL)
checking
Enable this option if you want to protect
certificate checking using CRLs and you have
manually loaded CRL files, or you have
enabled automatic CRL updates.
certificate checking using CRLs and you have
manually loaded CRL files, or you have
enabled automatic CRL updates.
Go to
Maintenance > Security
certificates > CRL management
to
configure how the VCS uploads CRL files.
Server
address 1 - 3
address 1 - 3
Enter the IP address or Fully Qualified Domain
Name (FQDN) of the server hosting the service.
You can specify a port by appending :<port>
to the address.
Name (FQDN) of the server hosting the service.
You can specify a port by appending :<port>
to the address.
If an FQDN is specified, ensure that the
VCS has an appropriate DNS
configuration that allows the FQDN to be
resolved.
VCS has an appropriate DNS
configuration that allows the FQDN to be
resolved.
For resiliency, up to three server
addresses can be supplied.
addresses can be supplied.
Path
Enter the URL of the service on the server.
Cisco VCS Administrator Guide (X8.1)
Page 191 of 504
Dial plan and call processing
Configuring search rules to use an external service