Warning: Undefined array key "kkmods_kkpostslider" in /home/clients/bb1b7c38f63c1b363aa0114be7911e68/web/collaboration/wp-content/plugins/kk-divi-mods/kk_divi_mods.php on line 67
MIC,LSC, Security Endpoints | Cisco Collaboration

MIC,LSC, Security Endpoints

by | Feb 25, 2010 | CUCM, Lab, Non classé, SCCP, SIP, Written Theory

Regarding security endpoints, you have 2 opportunities :

  • Newer phones are using more an existing Mafufacturing Installed Certificate , this is the MIC
  • Meanwhile , old phones will use a Locally Significant Certificate ( LSC) which will be installed by the Certificate Authority Proxy Function (CAPF)

As LSC must be a transaction between the Ip phone and the CAPF , here is the process as it is issued :

  1. IP Phone generates a public/private key pair
  2. A TLS Session is established with the CAPF Service and the keys and identity are sent from the phone to CAPF
  3. The CAPF Service creates and sends an LSC to the phone
  4. The IP Phone installs the LSC

Also for info, the CAPF Service must be in the phone CTL file , which is downloaded from the TFTP when the phone boots .