Cisco Cisco TelePresence Video Communication Server Expressway 관리 매뉴얼
Registration control
MCU, gateway and Content Server registration
H.323 systems such as gateways, MCUs and Content Servers can also register with a VCS. They
are known as locally registered services. These systems are configured with their own prefix, which
they provide to the VCS when registering. The VCS will then know to route all calls that begin with that
prefix to the gateway, MCU or Content Server as appropriate. These prefixes can also be used to
control registrations.
are known as locally registered services. These systems are configured with their own prefix, which
they provide to the VCS when registering. The VCS will then know to route all calls that begin with that
prefix to the gateway, MCU or Content Server as appropriate. These prefixes can also be used to
control registrations.
SIP devices cannot register prefixes. If your dial plan dictates that a SIP device should be reached via
a particular prefix, then you should add the device as a neighbor zone with an associated search rule
using a pattern match equal to the prefix to be used.
a particular prefix, then you should add the device as a neighbor zone with an associated search rule
using a pattern match equal to the prefix to be used.
Note that the Cisco TelePresence MPS 200 and MPS 800, and the Cisco TelePresence Content
Server both support Expressway. They can therefore register directly with a VCS Expressway for
firewall traversal.
Server both support Expressway. They can therefore register directly with a VCS Expressway for
firewall traversal.
Configuring registration restriction policy
The Registration configuration page (
VCS configuration > Registration > Configuration
) is
used to control how the VCS manages its registrations.
The Restriction policy option specifies the policy to use when determining which endpoints may
register with the VCS. The options are:
register with the VCS. The options are:
n
None: any endpoint may register.
n
Allow List: only those endpoints with an alias that matches an entry in the Allow List may register.
n
Deny List: all endpoints may register, unless they match an entry on the Deny List.
n
Directory: only endpoints that register an alias listed in the
may register.
n
Policy service: only endpoints that register with details allowed by the external policy service may
register.
register.
The default is None.
If you use an Allow List or Deny List, you must also go to the appropriate
or
configuration page to create the list.
Policy service
The Policy service option is used if you want to refer all registration restriction policy decisions out to
an external service.
an external service.
If you select this option an extra set of configuration fields appear so that you can specify the
connection details of the external service:
connection details of the external service:
Field
Description
Usage tips
Protocol
The protocol used to connect to the policy
service.
service.
The VCS automatically supports
HTTP to HTTPS redirection when
communicating with the policy service
server.
HTTP to HTTPS redirection when
communicating with the policy service
server.
Certificate
verification
mode
verification
mode
Controls whether the certificate presented
by the policy service is verified when
connecting over HTTPS.
by the policy service is verified when
connecting over HTTPS.
When enabled, the value specified in
the Server address field must be
contained within the server's X.509
certificate (in either the Subject
Common Name or the Subject
Alternative Name attributes).
the Server address field must be
contained within the server's X.509
certificate (in either the Subject
Common Name or the Subject
Alternative Name attributes).
Cisco VCS Administrator Guide (X6.1)
Page 65 of 401