Sample ios configuration summary – Cisco OL-24124-01 User Manual

Page 5

17-5

Cisco Unified Communications Manager Security Guide

OL-24124-01

Chapter 17 Configuring Virtual Private Networks

Sample IOS configuration summary

Router(config)# crypto key generate rsa general-keys label

-optional>

Router(config)# crypto pki trustpoint

Router(ca-trustpoint)# enrollment selfsigned

Router(config-ca-trustpoint)# fqdn

Router(config-ca-trustpoint)# subject-name CN=, CN=

Router(ca-trustpoint)#authorization username subjectname commonname

Router(ca-trustpoint)# crypto pki enroll

Router(ca-trustpoint)# end

•

Register the generated certificate with Cisco Unified Communications Manager.

Example:

Router(config)# crypto pki export pem terminal

Copy the text from the terminal and save it as a .pem file and upload it to the Managing
Certificate part of the CUCM.

Step 3

Install Anyconnect on IOS.

Download anyconnect package from cisco.com and install to flash

Example:

router(config)#webvpn install svc flash:/webvpn/anyconnect-win-2.3.2016-k9.pkg

Step 4

Configure the VPN feature. You can use the Sample IOS configuration summary bellow to guide you
with the configuration.

Note

To use the phone with both certificate and password authentication, create a user with the phone MAC
address. Username matching is case sensitive. For example:

username CP-7975G-SEP001AE2BC16CB password k1kLGQIoxyCO4ti9 encrypted

Sample IOS configuration summary

You can use the following sample IOS configuration for VPN client on IP phone as a general guideline
to creating your own configurations. The configuration entries can change over time.

Current configuration : 4648 bytes

! Last configuration change at 13:48:28 CDT Fri Mar 19 2010 by test

version 15.2

service timestamps debug datetime localtime show-timezone

service timestamps log datetime localtime show-timezone

no service password-encryption

! hostname of the IOS

hostname vpnios

boot-start-marker

! Specifying the image to be used by IOS – boot image

boot system flash c2800nm-advsecurityk9-mz.152-1.4.T

boot-end-marker

logging buffered 21474836

Pages: 1 … 3 4 5 6 7 … 16

wrong Brand

wrong Model

non readable

See also other documents in the category Cisco Phones:

IP Phone 7962 (6 pages)

IP Phone SPA 504G (68 pages)

ip phone 7945 (8 pages)

ip phone 7965 (16 pages)

ip phone 7940 (14 pages)

ip phone 7940 (2 pages)

VIDEO CAMERA OL-20862-01 (4 pages)

OL-12041-01 (6 pages)

OL-14628-01 (2 pages)

7905G (5 pages)

OL-14625-01 (14 pages)

OL-9420-01 (12 pages)

7902G (10 pages)

OL-21011-01 (14 pages)

OL-23091-01 (4 pages)

500 Series (58 pages)

78-18233-01 (2 pages)

OL-19470-01 (6 pages)

OL-8148-01 (18 pages)

UNIFIED OL-23092-01 (16 pages)

UNIFIED 7931G (10 pages)

OL-4660-01 (18 pages)

7931G (4 pages)

7931G (44 pages)

7931G (20 pages)

OL-10802-02 (20 pages)

7925G-EX (16 pages)

7985G (64 pages)

OL-18985-01 (2 pages)

OL-21853-01 (6 pages)

OL-16445-01 (4 pages)

OL-24541-01 (2 pages)

12 SP+ (36 pages)

Cisco Unified 7975G (26 pages)

9971 (8 pages)

7911 (18 pages)

OL- 142197 (6 pages)

7921G (30 pages)

Cisco Small Business Pro IP Phones SPA 525G (104 pages)

Cisco Unified 7940G (7 pages)

OL-5375-01 (8 pages)

7900 Series (10 pages)

6945 (2 pages)

OL-15499-01 (2 pages)