How do I deploy MRA clients to Cisco Expressway?
Defined in the Expressway "Guest account client URI" setting on the Expressway > Configuration > Unified Communications > Cisco Meeting Server page. Cisco Expressway supports Mobile and Remote Access with multiple external domains. With this deployment, you will have more than one external domain where your MRA clients may reside.
What are the Cisco Unified Communications Manager configuration requirements for mobile?
The following Cisco Unified Communications Manager configuration requirements exist for deploying Mobile and Remote Access: IP addressing —Unified CM must be using IPv4 addressing as Expressway does not support IPv6. Cisco AXL Web Service —This service must be running on the publisher node.
Do IP phones need clustered Expressway servers?
IP Phones need at least the same number of Expressway-C and Expressway-E servers in the cluster as the number of Unified CMs in the Call Manager group configured on the IP phone. Note that devices running TC or CE software don't need clustered Expressway servers for Unified CM failover.
What ports must the external firewall allow in Cisco Expressway?
The external firewall must allow the following inbound connections to Expressway: SIP: TCP 5061; HTTPS: TCP 8443; XMPP: TCP 5222; Media: UDP 36002 to 59999. For more information, see Cisco Expressway IP Port Usage Configuration Guide, for your version, on the Cisco Expressway Series configuration guides page .
What is Cisco Mobile Remote Access?
The Cisco Mobile and Remote Access (MRA) feature is a “client edge” solution that allows external software and hardware clients to register to enterprise Cisco Unified Communication (UC) solutions without requiring a VPN.
What is the purpose of mobile and remote access MRA in the Cisco CUCM architecture?
The Mobile and Remote Access solution (MRA) supports a hybrid on-premises and cloud-based service model. This provides a consistent experience inside and outside the enterprise. MRA provides a secure connection for Jabber application traffic without having to connect to the corporate network over a VPN.
What is an MRA phone?
It is a device and operating system agnostic solution for Cisco Jabber clients on Windows, Mac, iOS and Android platforms. MRA allows Jabber clients that are outside the enterprise to do the following: Use Instant Messaging and Presence services. Make voice and video calls.
How do you set up an MRA?
0) - MRA Configuration [Cisco Expressway Series] - Cisco....ProcedureOn the Expressway-C, go to Configuration > Unified Communications > Configuration.Set Unified Communications mode to Mobile and Remote Access.Click Save.Repeat this procedure on Expressway-E.
What is Cisco expressway used for?
Cisco Expressway is a powerful gateway solution specifically designed for comprehensive collaboration services provided through Cisco Unified Communications Manager, Cisco Business Edition, or Cisco Hosted Collaboration Solution (HCS).
What does Cisco Unified Communications Manager do?
CUCM is responsible for digit analysis of all calls. CUCM enables users to create scalable dial plans. Phone feature administration: CUCM extends services such as hold, transfer, forward, conference, speed dial, redial, call park, and many other features to IP phones and gateways.
How does Cisco Unified Communications Manager work?
CUCM uses SIP or SCCP to communicate with Cisco IP Phones for call setup and teardown and for supplementary service tasks. After a call has been set up, media exchange occurs directly between the Cisco IP Phones across the IP network, using the Real-Time Transport Protocol (RTP) to carry the audio.
What is the difference between CUCM publisher and subscriber?
The publisher verifies the subscriber's authenticity and adds the subscriber's IP address to its dynamic firewall (iptables). The subscriber is allowed to access the publisher database. The database content is replicated from the publisher to the subscriber.
What are network services and feature services What is the difference between them?
To avoid throwing errors only the needed feature services are activated (i.e. allowed to start). Network services are non-optional services for that product: they are required in all deployment scenarios. You have no ability to prevent them from starting but are able to stop/start/restart them.
What domain must the calls be routed to?
The domain to which the calls are routed must match with the MRA domain to which the endpoints were registered. For example, if endpoints are registered with the domain exp.example.com, the calls must be routed to this domain, and it must not be routed to the domain cluster1.exp.example.com .
What is the maximum bit rate for video calls on Cisco Unified Communications Manager?
The Maximum Session Bit Rate for Video Calls on the default region on Cisco Unified Communications Manager is 384 kbps by default . The Default call bandwidth on Expressway-C is also 384 kbps by default. These settings may be too low to deliver the expected video quality for MRA-connected devices.
How does Jabber verify the identity of Expressway-E?
Jabber clients verify the identity of the Expressway-E they are connecting to by validating its server certificate. To do this, they must have the certificate authority that was used to sign the Expressway-E's server certificate in their list of trusted CAs.
What happens if one Expressway node fails?
Currently, if one Expressway node in a clustered deployment fails or loses network connectivity for any reason (including if the Unified CM restarts or fails), all active calls going through the affected node will fail. The calls are not handed over to another cluster peer. Bug ID CSCtr39974 refers. This is not an MRA-specific issue and applies to all call types.
Does Jabber use Expressway C?
Deployments that require Jabber clients to always connect over MRA also benefit from the X12.5 update that no longer requires the Expressway-C to resolve the _cisco-uds DNS SRV record. So administrators only need to configure the _collab-edge DNS SRV record, and Jabber clients using service discovery will only have the option of connecting over MRA.
Does Cisco Expressway support SRV?
From X12.5, the Cisco Expressway Series supports the case where MRA clients use an external domain to lookup the _collab-edge SRV record, and the _cisco-uds SRV record for that same external domain cannot be resolved by the Expressway-C. This is typically the case when split DNS is not available for the external domain. And prior to X12.5 this required a pinpoint subdomain or some other DNS workaround on the Expressway-C, to satisfy the client requirements for resolving the _cisco-uds record.
Can you use CMS and MRA on the same Expressway?
If you use both the CMS Web Proxy service and MRA on the same Expressway, the following configuration items must be assigned different values per service. If you try to use the same value, the service that was configured first will work, but the other one will fail:
Vulnerable Products
Cisco Unified Communications Manager Mobile and Remote Access Edge Devices.
Products Confirmed Not Vulnerable
No other Cisco products are currently known to be affected by this vulnerability.
How to sign on to Cisco?
Open a web browser and navigate to https://internet.cisco.com. Sign On with your Cisco corporate ID and password.
What devices can be used as MRA?
There are several possible devices to use as an MRA communications device. The first is Cisco Jabber for Windows. We will be using an external physical laptop to setup and configure this device to connect via the Cisco Collaboration Edge solution.
Is Cisco blocking MRA ports?
Cisco Employees – Cisco IT is blocking various media ports on the corporate firewall. Please make sure you are utilizing a public connection when registering devices over MRA whether wireless or wired.
