Cisco Cisco TelePresence Video Communication Server Expressway 관리 매뉴얼
Registration control
MCU, gateway and Content Server registration
H.323 systems such as gateways, MCUs and Content Servers can also register with a Cisco VCS.
They are known as locally registered services. These systems are configured with their own prefix,
which they provide to the Cisco VCS when registering. The Cisco VCS will then know to route all calls
that begin with that prefix to the gateway, MCU or Content Server as appropriate. These prefixes can
also be used to control registrations.
They are known as locally registered services. These systems are configured with their own prefix,
which they provide to the Cisco VCS when registering. The Cisco VCS will then know to route all calls
that begin with that prefix to the gateway, MCU or Content Server as appropriate. These prefixes can
also be used to control registrations.
SIP devices cannot register prefixes. If your dial plan dictates that a SIP device should be reached via
a particular prefix, then you should add the device as a neighbor zone with an associated search rule
using a pattern match equal to the prefix to be used.
a particular prefix, then you should add the device as a neighbor zone with an associated search rule
using a pattern match equal to the prefix to be used.
Note that the Cisco TelePresence MPS 200 and MPS 800, and the Cisco TelePresence Content
Server both support Expressway. They can therefore register directly with a Cisco VCS Expressway
for firewall traversal.
Server both support Expressway. They can therefore register directly with a Cisco VCS Expressway
for firewall traversal.
Configuring registration restriction policy
The Registration configuration page (
VCS configuration > Registration > Configuration
) is
used to control how the Cisco VCS manages its registrations.
The Restriction policy option specifies the policy to use when determining which endpoints may
register with the Cisco VCS. The options are:
register with the Cisco VCS. The options are:
n
None: any endpoint may register.
n
Allow List: only those endpoints with an alias that matches an entry in the Allow List may register.
n
Deny List: all endpoints may register, unless they match an entry on the Deny List.
n
Directory: only endpoints that register an alias listed in the
may register.
n
Policy service: only endpoints that register with details allowed by the external policy service may
register.
register.
The default is None.
If you use an Allow List or Deny List, you must also go to the appropriate
or
configuration page to create the list.
Policy service
The Policy service option is used if you want to refer all registration restriction policy decisions out to
an external service.
an external service.
If you select this option an extra set of configuration fields appear so that you can specify the
connection details of the external service:
connection details of the external service:
Field
Description
Usage tips
Protocol
The protocol used to connect to the policy
service.
service.
The Cisco VCS automatically
supports HTTP to HTTPS redirection
when communicating with the policy
service server.
supports HTTP to HTTPS redirection
when communicating with the policy
service server.
Certificate
verification
mode
verification
mode
Controls whether the certificate presented
by the policy service is verified when
connecting over HTTPS.
by the policy service is verified when
connecting over HTTPS.
When enabled, the value specified in
the Server address field must be
contained within the server's X.509
certificate (in either the Subject
Common Name or the Subject
Alternative Name attributes).
the Server address field must be
contained within the server's X.509
certificate (in either the Subject
Common Name or the Subject
Alternative Name attributes).
Cisco VCS Administrator Guide (X6)
Page 65 of 295