Remote-access Guide

cisco mobile and remote access via expressway

by Prof. Emerald Farrell Published 2 years ago Updated 2 years ago
image

What is Cisco Mobile Remote Access?

The Cisco Mobile and Remote Access (MRA) feature is a “client edge” solution that allows external software and hardware clients to register to enterprise Cisco Unified Communication (UC) solutions without requiring a VPN.

What are Cisco expressways used for?

Cisco Expressway supports a wide range of IP phones, endpoints, smartphones, tablets, and provides video interoperability with standards-based H. 323, H. 264 SVC, or SIP systems.

How do I connect to Cisco Expressway?

Open a browser window and in the address line type one of the following: • IP address of the Cisco Expressway (for example, https://10.0.0.1). Enter the address as HTTPS. FQDN of the Cisco Expressway (for example, https://mydomain.example.com).

What is the purpose of mobile and remote access MRA in the Cisco CUCM architecture?

The Mobile and Remote Access solution (MRA) supports a hybrid on-premises and cloud-based service model. This provides a consistent experience inside and outside the enterprise. MRA provides a secure connection for Jabber application traffic without having to connect to the corporate network over a VPN.

What is difference between Expressway-C and expressway-E?

The Expressway-C is configured with DNS servers which are located on the internal network. The Expressway-E is configured with DNS servers which are publicly routable.

What is Expressway in VOIP?

Cisco Expressway offers users outside your firewall simple, highly secure access to all collaboration workloads, including video, voice, content, IM, and presence. Collaborate with people who are on third-party systems and endpoints or in other companies.

What is the difference between Cisco Expressway-C and E?

Differences between VCS C and VCS E Tandberg's legacy devices typically used VCS Control, or VCS C, within the organization and VCS Expressway, or VCS E, was used between firewalls. To put it more simply, VCS C was used internally within the organization while VCS E was utilized externally.

Is Expressway secure?

Secure communication is possible with Expressway because it uses two servers. The core server, known as Expressway-C, sits inside and acts as a firewall traversal client. The second server, Expressway-E server, is on the edge of your network and is the only point of access to the public Internet.

How do you set up an MRA?

0) - MRA Configuration [Cisco Expressway Series] - Cisco....ProcedureOn the Expressway-C, go to Configuration > Unified Communications > Configuration.Set Unified Communications mode to Mobile and Remote Access.Click Save.Repeat this procedure on Expressway-E.

What are MRA phones?

Basically, MRA (Cisco Unified Communications Mobile and Remote Access) allows endpoints such as Cisco Jabber to have their registration, call control, provisioning, messaging and presence services provided by CUCM when the endpoint is outside the enterprise network.

What are two functions of Cisco expressway in the collaboration edge?

A. Expressway-C provides encryption for Mobile and Remote Access but not for business-to-business communications. B. Expressway-E provides a VPN entry point for Cisco IP phones with a Cisco AnyConnect client using authentication based on certificates.

What is Cisco VCS Expressway?

The VCS Expressway is a SIP Registrar & Proxy and H. 323 Gatekeeper for devices which are located outside the internal network (for example, home users and mobile worker registering across the internet and 3rd party businesses making calls to, or receiving calls from this network).

Which two functionalities does Cisco Expressway provide in the Cisco collaboration architecture?

NetworkingAssurance and Insights.Storage networking.

What is the difference between a highway and an expressway?

An expressway is a limited-access highway for a high-speed and high volume of traffic without any signal, intersection, or property access. Whereas, the highway is a main public roadway for a higher volume of traffic with traffic signals, intersections, and property access.

What is Expressway C?

Expressway-C automatically generates non-configurable neighbor zones between itself and each discovered Unified CM node. A TCP zone is always created, and a TLS zone is created also if the Unified CM node is configured with a Cluster Security Mode (System > Enterprise Parameters > Security Parameters) of 1 (Mixed) (so that it can support devices provisioned with secure profiles). The TLS zone is configured with its TLS verify mode set to On if the Unified CM discovery had TLS verify mode enabled. This means that the Expressway-C will verify the CallManager certificate for subsequent SIP communications. Each zone is created with a name in the format 'CEtcp-<node name>' or 'CEtls-<node name>'.

How does Jabber verify the identity of Expressway E?

Jabber clients must verify the identity of the Expressway-E they are connecting to by validating its server certificate. To do this, they must have the certificate authority that was used to sign the Expressway-E's server certificate in their list of trusted CAs.

What is Cisco Unified Communications?

Cisco Unified Communications mobile and remote access is a core part of the Cisco Collaboration Edge Architecture. It allows endpoints such as Cisco Jabber to have their registration, call control, provisioning, messaging and presence services provided by Cisco Unified Communications Manager (Unified CM) when the endpoint is not within the enterprise network. The Expressway provides secure firewall traversal and line-side support for Unified CM registrations.

What is a mobile and remote access solution?

The mobile and remote access solution supports a hybrid on-premises and cloud-based service model, providing a consistent experience inside and outside the enterprise. It provides a secure connection for Jabber application traffic without having to connect to the corporate network over a VPN. It is a device and operating system agnostic solution for Cisco Jabber clients on Windows, Mac, iOS and Android platforms.

What version of Mac is Cisco Jabber?

n Cisco Jabber for Mac 9.6 or later

Why does a high volume of calls trigger denial of service thresholds on unified CM?

This is because all the calls arriving at Unified CM are from the same Expressway-C (cluster).

Does Expressway E always respond to SSO requests?

The Expressway-E always responds true to /get_edge_sso requests. It does not make the inwards request to the user's home Unified CM, and thus cannot know whether SSO is really available there.

image
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z 1 2 3 4 5 6 7 8 9