Polycom 1500 Server User Manual


  Open as PDF
of 1124
 
Polycom, Inc. F-1
Appendix F
Secure Communication Mode
The RMX™ can be configured to work in Secure Mode or Ultra Secure Mode. For more
information see "Ultra Secure Mode” on page 23-1 and "Flags Specific to Maximum Security
Environments - Ultra Secure Mode” on page 22-52.
In Secured mode the Collaboration Server and the Collaboration Server Web Client are
configured to work with SSL/TLS.
In this mode, a SSL/TLS Certificate is installed on the MCU, setting the MCU Listening Port
to secured port 443.
TLS is a cryptographic protocol used to ensure secure communications on public networks.
TLS uses a Certificate purchased from a trusted third party Certificate Authority to authenticate
public keys that are used in conjunction with private keys to ensure secure communications
across the network.
The Collaboration Server supports:
TLS 1.0
SSL 3.0 (Secure Socket Layer)
SSL 3.0 utilizes 1024-bit RSA public key encryption.
TLS certificates can be generated using the following methods: CSR, PFX and PEM; each
giving different options for Encryption Key length. Table F-1 lists the SIP TLS Encryption Key
length support for the various system components.
Certificate Configuration and Management
All Polycom devices used in a Maximum Security Environment require security certificates.
For more details see the Ultra Secure Mode chapter, "Certificate Management” on page 23-5.
Table F-1 SIP TLS - Encryption Key Support by System Component
System Component Key Generation Method Key Length (bits) Key generated by
SIP Signaling
CSR 2048 Collaboration
Server
PFX / PEM 1024 or 2048 User
Management
CSR 2048
Collaboration
Server
LDAP