Remote-access Guide

cisco expressway mobile remote access

by Rashad Keeling Published 3 years ago Updated 2 years ago
image

What is Cisco Mobile Remote Access?

The Cisco Mobile and Remote Access (MRA) feature is a “client edge” solution that allows external software and hardware clients to register to enterprise Cisco Unified Communication (UC) solutions without requiring a VPN.

How do I connect to Cisco Expressway?

Open a browser window and in the address line type one of the following: • IP address of the Cisco Expressway (for example, https://10.0.0.1). Enter the address as HTTPS. FQDN of the Cisco Expressway (for example, https://mydomain.example.com).

What is the purpose of mobile and remote access MRA in the Cisco CUCM architecture?

The Mobile and Remote Access solution (MRA) supports a hybrid on-premises and cloud-based service model. This provides a consistent experience inside and outside the enterprise. MRA provides a secure connection for Jabber application traffic without having to connect to the corporate network over a VPN.

What is Cisco expressway used for?

Cisco Expressway is a powerful gateway solution specifically designed for comprehensive collaboration services provided through Cisco Unified Communications Manager, Cisco Business Edition, or Cisco Hosted Collaboration Solution (HCS).

What is the difference between Cisco Expressway-C and E?

Differences between VCS C and VCS E Tandberg's legacy devices typically used VCS Control, or VCS C, within the organization and VCS Expressway, or VCS E, was used between firewalls. To put it more simply, VCS C was used internally within the organization while VCS E was utilized externally.

What is Expressway-C and expressway E?

In the example deployment two DNS servers are​​ configured for each Expressway, which provides a level of DNS server redundancy. The Expressway-C is configured with DNS servers which are located on the internal network. The Expressway-E is configured with DNS servers which are publicly routable.

What are MRA phones?

Basically, MRA (Cisco Unified Communications Mobile and Remote Access) allows endpoints such as Cisco Jabber to have their registration, call control, provisioning, messaging and presence services provided by CUCM when the endpoint is outside the enterprise network.

How do you set up an MRA?

0) - MRA Configuration [Cisco Expressway Series] - Cisco....ProcedureOn the Expressway-C, go to Configuration > Unified Communications > Configuration.Set Unified Communications mode to Mobile and Remote Access.Click Save.Repeat this procedure on Expressway-E.

What are two functions of Cisco expressway in the collaboration edge?

A. Expressway-C provides encryption for Mobile and Remote Access but not for business-to-business communications. B. Expressway-E provides a VPN entry point for Cisco IP phones with a Cisco AnyConnect client using authentication based on certificates.

What is Cisco VCS Expressway?

The VCS Expressway is a SIP Registrar & Proxy and H. 323 Gatekeeper for devices which are located outside the internal network (for example, home users and mobile worker registering across the internet and 3rd party businesses making calls to, or receiving calls from this network).

What does Expressway mean?

Definition of expressway : a high-speed divided highway for through traffic with access partially or fully controlled.

What is Cisco Unified Contact Center Express?

Cisco Unified Contact Center Express provides a secure, available, and sophisticated contact center software solution for up to 400 agents and interactive voice response (IVR) ports that is easy to deploy and manage. This omnichannel solution is ideal for formal and informal small to medium-size contact centers.

What is IM and presence server?

Cisco Unified Communications Manager IM & Presence is highly in demand server which provides true Unified Communication functionalities and rich features like Instant Messaging, Presence Status of the users, File Sharing, Screen Sharing, Remote Controlling etc.

What is VCS Expressway?

The VCS Expressway is a SIP Registrar & Proxy and H. 323 Gatekeeper for devices which are located outside the internal network (for example, home users and mobile worker registering across the internet and 3rd party businesses making calls to, or receiving calls from this network).

How do I upgrade my Cisco Expressway?

2:144:49How to Upgrade an Expressway Cluster - YouTubeYouTubeStart of suggested clipEnd of suggested clipAnd restore type an encryption password. And create system backup. File. Now go to maintenanceMoreAnd restore type an encryption password. And create system backup. File. Now go to maintenance maintenance mode. And turn maintenance mode on if there are any active calls or registrations.

What is Expressway C?

Expressway-C automatically generates non-configurable neighbor zones between itself and each discovered Unified CM node. A TCP zone is always created, and a TLS zone is created also if the Unified CM node is configured with a Cluster Security Mode ( System > Enterprise Parameters > Security Parameters) of 1 ( Mixed) (so that it can support devices provisioned with secure profiles). The TLS zone is configured with its TLS verify mode set to On if the Unified CM discovery had TLS verify mode enabled. This means that the Expressway-C will verify the CallManager certificate for subsequent SIP communications. Each zone is created with a name in the format 'CEtcp-<node name>' or 'CEtls-<node name>'.

How does Cisco Jabber work?

If Jabber is outside the network, it requests the service from the Expressway-E on the edge of the network. If SAML SSO authentication is enabled at the edge, the Expressway-E redirects Jabber to the IdP with a signed request to authenticate the user.

What is SIP OAuth mode?

SIP OAuth Mode is recommended if you want secure SIP line signaling and your system supports it.

Does Expressway use OAuth?

To use OAuth authentication on Expressway with MRA, you must also have it enabled on your internal UC applications, such as Cisco Unified Communications Manager and Cisco Unity Connection (if it is deployed).

Does Cisco accept responsibility for SAML 2.0?

Cisco cannot accept responsibility for any errors, limitations, or specific configuration of the IdP. Although Cisco Collaboration infrastructure may prove to be compatible with other IdPs claiming SAML 2.0 compliance, only the following IdPs have been tested with Cisco Collaboration solutions: OpenAM 10.0.1.

Can multiple MRA users use the same IP address?

If you have multiple MRA users using the same IP address (for example, if you have multiple MRA users behind a NAT with the same public IP address), automated intrusion protection may trigger due to all of the traffic from the same IP address. In this case, configure an exemption on the IP address.

Do you need to enable mobile access on Expressway?

You must enable Mobile and Remote Access mode on Expressway before you can configure domains and traversal zones.

image
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z 1 2 3 4 5 6 7 8 9