Securing the Windows Operating System

This chapter covers the following topics:

  • Identifying security threats to the Windows operating system
  • Explaining the Cisco security and hot fix policy for keeping the operating system up to date
  • Explaining how the optional operating system security script and manual security settings provide more stringent security controls to the hardened Windows operating system
  • Identifying the antivirus protection software that is approved for use on a Cisco CallManager server
  • Explaining the features and functions of Cisco Security Agent as they relate to securing Cisco CallManager
  • Defining and administering a password policy for the administrator password
  • Explaining how to protect Windows against the most common exploits
  • Explaining common security practices and settings that are not recommended on Cisco CallManager

The telephony system is a business-critical, system, 24 hours a day, seven days a week, to all companies. Such critical environments must be as secure as possible to avoid breakdowns related to failures in the system or attacks involving the network. The Microsoft Windows 2000 Server Operating System is the base of Cisco CallManager 3.X and 4.X versions. This chapter discusses options for hardening and securing the Cisco CallManager operating system and gives students an overview of possible vulnerabilities and of practices for tightening security in the Cisco IP Telephony Operating System.


Cisco Unified CallManager 5.X versions use Red Hat Linux as a base operating system. This operating system is inaccessible as the 5.X versions of CallManager run as an appliance.

Threats Targeting the Operating System

Part I: Cisco CallManager Fundamentals

Introduction to Cisco Unified Communications and Cisco Unified CallManager

Cisco Unified CallManager Clustering and Deployment Options

Cisco Unified CallManager Installation and Upgrades

Part II: IPT Devices and Users

Cisco IP Phones and Other User Devices

Configuring Cisco Unified CallManager to Support IP Phones

Cisco IP Telephony Users

Cisco Bulk Administration Tool

Part III: IPT Network Integration and Route Plan

Cisco Catalyst Switches

Configuring Cisco Gateways and Trunks

Cisco Unified CallManager Route Plan Basics

Cisco Unified CallManager Advanced Route Plans

Configuring Hunt Groups and Call Coverage

Implementing Telephony Call Restrictions and Control

Implementing Multiple-Site Deployments

Part IV: VoIP Features

Media Resources

Configuring User Features, Part 1

Configuring User Features, Part 2

Configuring Cisco Unified CallManager Attendant Console

Configuring Cisco IP Manager Assistant

Part V: IPT Security

Securing the Windows Operating System

Securing Cisco Unified CallManager Administration

Preventing Toll Fraud

Hardening the IP Phone

Understanding Cryptographic Fundamentals

Understanding the Public Key Infrastructure

Understanding Cisco IP Telephony Authentication and Encryption Fundamentals

Configuring Cisco IP Telephony Authentication and Encryption

Part VI: IP Video

Introducing IP Video Telephony

Configuring Cisco VT Advantage

Part VII: IPT Management

Introducing Database Tools and Cisco Unified CallManager Serviceability

Monitoring Performance

Configuring Alarms and Traces

Configuring CAR

Using Additional Management and Monitoring Tools

Part VIII: Appendix

Appendix A. Answers to Review Questions


Authorized Self-Study Guide Cisco IP Telephony (CIPT)
Cisco IP Telephony (CIPT) (Authorized Self-Study) (2nd Edition)
ISBN: 158705261X
EAN: 2147483647
Year: 2004
Pages: 329 © 2008-2020.
If you may any questions please contact us: