Configuring SIP Trunk Security Profile for IM & Presence Service

SIP Trunk Security Profile Configuration

Prev Question Next Question

Question

255 Which two settings should be configured on the SIP Trunk Security Profile for the IM & Presence Service SIP Trunk? (Choose two.)

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D. E.

AB.

Configure SIP Trunk Security Profile for IM and Presence Service Procedure - Step 1 - Choose Cisco Unified CM Administration > System > Security > SIP Trunk Security Profile.

Step 2 - Click Find.

Step 3 - Click Non Secure SIP Trunk Profile.

Step 4 - Click Copy and enter CUP Trunk in the Name field.

Step 5 - Verify that the setting for Device Security Mode is Non Secure.

Step 6 - Verify that the setting for Incoming Transport Type is TCP+UDP.

Step 7 - Verify that the setting for Outgoing Transport Type is TCP.

Step 8 - Check to enable these items: Step 9 - Click Save.

http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/im_presence/configAdminGuide/9_0/

The SIP Trunk Security Profile for the IM & Presence Service SIP Trunk provides security-related settings that are applied to the SIP trunk. The following two settings should be configured on this profile:

  1. Verify that the setting for Incoming Transport Type is TCP+UDP: This setting specifies the transport protocol used for incoming SIP messages. By default, both TCP and UDP protocols are enabled. However, to ensure that incoming SIP messages are received correctly, it is recommended to verify that the Incoming Transport Type is set to TCP+UDP.

  2. Configure Device Security Mode to Encrypted: This setting specifies the security mode used for SIP signaling between the IM & Presence Service and other SIP entities. The Encrypted mode provides a high level of security by encrypting the signaling messages exchanged between the endpoints. This setting should be configured to ensure that the SIP trunk is secured.

Therefore, the correct answers are B and C.

The other options are incorrect because:

A. Accept Presence Subscription: This setting enables the SIP trunk to accept subscription requests for presence information. However, this setting does not provide any security-related features.

D. Enable Application Level Authorization: This setting enables the SIP trunk to perform authorization checks at the application level. However, this setting does not provide any security-related features.

E. Outgoing Transport Type: This setting specifies the transport protocol used for outgoing SIP messages. However, this setting does not provide any security-related features.