How it Works
Plantronics
Loading...
RealPresence Unified
User Manual
37 pgs1.13 Mb0

Plantronics RealPresence Unified User Manual

SOLUTION DEPLOYMENT GUIDE
Polycom RealPresence Unified Communications Solution Deployment Guide for Maximum Security Environments
Version 1.0.0 | January 2014 | 3725-00030-003
1
UC Solution Deployment Guide for Maximum Security Environments
Copyright ©20141/8/2014, Polycom, Inc. All rights reserved. No part of this document may be reproduced, translated into another language or format, or transmitted in any form or by any means, electronic or mechanical, for any purpose, without the express written permission of Polycom, Inc.
6001 America Center Drive San Jose, CA 95002 USA
Trademarks
Polycom®, the Polycom logo and the names and marks associated with Polycom products are trademarks and/or service marks of Polycom, Inc. and are registered and/or common law marks in the United States and various other countries. All other trademarks are property of their respective owners. No portion hereof may be reproduced or transmitted in any form or by any means, for any purpose other than the recipient's personal use, without the express written permission of Polycom.
End User License Agreement
By installing, copying, or otherwise using this product, you acknowledge that you have read, understand and agree to be bound by the terms and conditions of the End User License Agreement for this product.
Patent Information
The accompanying product may be protected by one or more U.S. and foreign patents and/or pending patent applications held by Polycom, Inc.
Open Source Software Used in this Product
This product may contain open source software. You may receive the open source software from Polycom up to three (3) years after the distribution date of the applicable product or software at a charge not greater than the cost to Polycom of shipping or distributing the software to you. To receive software information, as well as the open source software code used in this product, contact Polycom by email at OpenSourceVideo@polycom.com.
Disclaimer
While Polycom uses reasonable efforts to include accurate and up-to-date information in this document, Polycom makes no warranties or representations as to its accuracy. Polycom assumes no liability or responsibility for any typographical or other errors or omissions in the content of this document.
Limitation of Liability
Polycom and/or its respective suppliers make no representations about the suitability of the information contained in
this document for any purpose. Information is provided “as is” without warranty of any kind and is subject to change
without notice. The entire risk arising out of its use remains with the recipient. In no event shall Polycom and/or its respective suppliers be liable for any direct, consequential, incidental, special, punitive or other damages whatsoever (including without limitation, damages for loss of business profits, business interruption, or loss of business information), even if Polycom has been advised of the possibility of such damages.
Customer Feedback
We are striving to improve our documentation quality and we appreciate your feedback. Email your opinions and comments to DocumentationFeedback@polycom.com.
Visit the Polycom Support Center for End User License Agreements, software downloads, product documents, product licenses, troubleshooting tips, service requests, and more.
2
Contents
About This Guide ...................................................................................................... 5
What’s in This Guide? ...................................................................................................................... 5
How to Use This Guide..................................................................................................................... 5
Conventions Used in this Guide ..................................................................................................... 6
Information Elements ....................................................................................................................... 6
Typographic Conventions ................................................................................................................ 7
Getting Started ...................................................................................................... 8 1:
Required Skills .................................................................................................................................. 8
Hardware and Software Dependencies .......................................................................................... 9
Getting Help and Support Resources ............................................................................................. 9
Solution Overview .............................................................................................. 10 2:
Polycom UC Solution Services ..................................................................................................... 10
Conferencing Protocol Services ..................................................................................................... 10
Multipoint Conferencing Service .................................................................................................... 11
Call Protocol Gateway Services ..................................................................................................... 11
Enterprise Directory Services ........................................................................................................ 11
Management Services ................................................................................................................... 11
Local Access Control Services ...................................................................................................... 12
Public Key Infrastructure (PKI) Services ........................................................................................ 12
Media Encryption Services ............................................................................................................ 13
Conference Recording and Playback Services ............................................................................. 13
Network Infrastructure Services ................................................................................................... 13
Domain Name Server (DNS) ......................................................................................................... 13
Network Time Protocol (NTP) Servers ........................................................................................... 14
Public Key Infrastructure Service ................................................................................................... 14
802.1X ............................................................................................................................................ 16
Active Directory Servers................................................................................................................. 16
Administration PCs ......................................................................................................................... 16
Dynamic Host Control Protocol (DHCP) ........................................................................................ 17
Solution Deployment Models ........................................................................................................ 18
Native H.323/H.320 (ISDN/PSTN) Deployment ............................................................................. 18
Native AS-SIP Deployment ............................................................................................................ 20
Native AS-SIP with H.323/H.320 Gateway Deployment ................................................................ 22
Mixed Mode Deployment ............................................................................................................... 24
Solution Setup .................................................................................................... 27 3:
Determine Your Deployment Model .............................................................................................. 27
Gather Network Equipment Address Information ....................................................................... 27
Complete the First Time Setup Worksheet .................................................................................. 27
Configure Network Infrastructure Services ................................................................................. 28
3
UC Solution Deployment Guide for Maximum Security Environments
Set up DNS Host and Service Records ......................................................................................... 28
Network Time Protocol (NTP) Servers ........................................................................................... 28
Public Key Infrastructure Service ................................................................................................... 29
802.1X ............................................................................................................................................ 29
Active Directory Servers................................................................................................................. 29
Administration PCs ......................................................................................................................... 29
Install Polycom Solution Products ............................................................................................... 29
Standalone Installation ................................................................................................................... 30
Solution Integration ........................................................................................................................ 36
4
About This Guide
This Solution Deployment Guide describes how to securely deploy the Polycom RealPresence Unified Communications (UC) solutionspecifically the Polycom RealPresence products that enable the solution and the network infrastructure components on which it is dependent.
What’s in This Guide?
This Solution Deployment Guide uses a number of conventions that help you to understand information and perform tasks. This chapter describes these conventions and the scope of this document.
In addition to this chapter this Solution Deployment Guide includes the following chapters:
Getting Started
This chapter describes the scope of this document and the skills required to implement a Maximum Security Environment. This chapter also contains a list of Polycom products that can be deployed in Maximum Security Environments along with the network infrastructure dependencies within the solution. It also contains information on getting help from Polycom and its various discussion forums.
Solution Overview
Describes Polycom’s Unified Communications (UC) solution for Maximum Security Environments and how it is enabled by an integrated suite of Polycom RealPresence products, solution services and Network Infrastructure Services. The reference deployment models for the solution are described.
Solution Setup
In this chapter, you’ll learn how to set up and integrate the Polycom RealPresence UC solution products, solution services and Network Infrastructure Services relevant to your deployment model.
How to Use This Guide
This document provides a high-level overview of the deployment process for maximum security environments.
Please refer to the product documentation for the appropriate Polycom product for detailed instructions.
5
UC Solution Deployment Guide for Maximum Security Environments
Name
Icon
Description
Note
The Note icon highlights information of interest or important information needed to be successful in accomplishing a procedure or to understand a concept.
Administrator Tip
The Administrator Tip icon highlights techniques, shortcuts, or productivity related tips.
Caution
The Caution icon highlights information you need to know to avoid a hazard that could potentially impact device performance, application functionality, or successful feature configuration.
Warning
The Warning icon highlights an action you must perform (or avoid) to prevent issues that may cause you to lose information or your configuration setup, and/or affect phone or network performance.
Web Info
The Web Info icon highlights supplementary information available online such as documents or downloads on support.polycom.com or other locations.
Timesaver
The Timesaver icon highlights a faster or alternative method for accomplishing a method or operation.
Power Tip
The Power Tip icon highlights faster, alternative procedures for advanced administrators already familiar with the techniques being discussed.
Troubleshooting
The Troubleshooting icon highlights information that may help you solve a relevant problem or to refer you to other relevant troubleshooting resources.
Settings
The Settings icon highlights settings you may need to choose for a specific behavior, to enable a specific feature, or to access customization options.
Conventions Used in this Guide
This Solution Deployment Guide contains terms, graphical elements, and a few typographic conventions. Familiarizing yourself with these terms, elements, and conventions will help you successfully perform tasks.
Information Elements
This guide may include any of the following icons to alert you to important information.
Icons Used in this Guide
6
UC Solution Deployment Guide for Maximum Security Environments
Convention
Description
Bold
Highlights interface items such as menus, soft keys, file names, and directories. Also used to represent menu selections and text entry to the phone.
Italics
Used to emphasize text, to show example values or inputs, and to show titles of reference documents available from the Polycom Support Web site and other reference sites.
Blue Text
Used for cross references to other sections within this document and for hyperlinks to external sites and documents.
Courier
Used for code fragments and parameter names.
Typographic Conventions
A few typographic conventions, listed next, are used in this guide to distinguish types of in-text information.
Typographic Conventions
7
UC Solution Deployment Guide for Maximum Security Environments
Getting Started 1:
The Polycom RealPresence Unified Communications (UC) solution for maximum security environments is enabled by an integrated suite of Polycom products that, along with a set of required network infrastructure services, allow you to securely integrate high-quality video and audio conferencing.
Required Skills
Deploying a secure video conferencing solution requires planning and elementary knowledge of video conferencing and video conferencing administration.
This guide is written for a technical audience. You will be configuring system security, networking, and security certificates as well as integrating with a time server, directory server, and DNS server.
This guide assumes that you are starting with Polycom products that have not been previously configured. Also, deploying Polycom unified communications requires knowledge of the following third­party products:
A Domain Name Service (DNS) server A Microsoft Active Directory server An NTP (Network Time Protocol) server Public Key Infrastructure Services
X.509 Certificates A Certificate Authority (CA) server OCSP (Online Certificate Status Protocol) server CRLs (Certificate Revocation Lists)
802.1X (if used in your network infrastructure) A Local Session Controller (if used in the selected configuration)
This document assumes that these infrastructure systems are already deployed and that the administrators for these applications are available to aid you in deploying the Polycom RealPresence UC solution.
8
UC Solution Deployment Guide for Maximum Security Environments
Product
Version
Description
Polycom Polycom RealPresence Collaboration Server (RMX) 1500, 2000 or 4000 systems
V8.1.4J
Provides multipoint conferencing and call protocol gateway services.
Polycom Distributed Media Application (DMA) 7000 system
V6.0.1J
Virtualizes multipoint conferencing resources. Highly recommended for deployments that include two or more Polycom RMX systems.
Polycom RealPresence Resource Manager
7.3
Full featured management and directory services for the Polycom UC solution.
Polycom HDX Series Endpoints
V2.7.1_J or later
High-definition video endpoint systems
Polycom RealPresence Group Series Endpoints (Group 300, Group 500, and Group 700)
V4.1.0_J
2nd Generation high-definition video endpoint systems
Polycom RealPresence Recording and Streaming Server (RSS) 4000
V6.9J or later
Provides conference recording and playback services
Hardware and Software Dependencies
The Polycom RealPresence UC solution for Maximum Security Environments relies on the following Polycom products and their respective software versions. For information about all accredited software versions, see the Government Certification & Accreditation site.
Getting Help and Support Resources
This guide includes a Getting Help and Support Resources section where you can find links to Polycom product and support sites and partner sites. You can also find information about The Polycom
Community, which provides access to discussion forums you can use to discuss hardware, software, and
partner solution topics with your colleagues. To register with the Polycom Community, you will need to create a Polycom online account.
The Polycom Community includes access to Polycom support personnel, as well as user-generated hardware, software, and partner solutions topics. You can view top blog posts and participate in threads on any number of recent topics.
Polycom also provides Federal market-specific resources on the Polycom Solutions for U.S. Federal
Government web site.
9
UC Solution Deployment Guide for Maximum Security Environments
Solution Overview 2:
Polycom RealPresence Unified Communications (UC) solution for Maximum Security Environments is enabled by an integrated suite of Polycom products that, along with some necessary network infrastructure services, allow you to securely integrate high-quality video and audio conferencing.
This solution, when deployed according to the guidance in this document (and those referenced by it) meets the U.S. Department of Defense security and interoperability requirements for listing on the US Department of Defense (DoD) Unified Capabilities (UC) Approve Products List (APL) as maintained by the Defense Information Systems Agency (DISA) Unified Capabilities Connection Office (UCCO).
For more information about the UC APL process please visit the UCCO website. This document provides information for security-conscious customers using the listed products necessary
to successfully deploy the solution in a customer environment
Polycom UC Solution Services
The Polycom Unified Communications (UC) solution is based on the Polycom RealPresence platform, along with supporting products and services within your network infrastructure. Proper deployment relies on successfully configuring and integrating these various services and platform components to work together to deliver secure, high quality and reliable UC solutions. The following sections outline the important services and platform components that make up the solution.
Conferencing Protocol Services
The Polycom UC solution supports the following international and national conferencing protocols. Some or all of these conferencing protocols may be applicable to your deployment:
Public Switched Telephone Network (PSTN) audio ITU H.320 (Narrow-band Videoconferencing using switched circuit networks) ITU H.323 (Packet-based Videoconferencing using IP networks)
Includes H.323 Gatekeeper service which provides H.323 device location and call routing and
control services
IETF SIP (2nd Generation Packet-based Videoconferencing using IP networks)
Includes SIP Proxy and Registrar servers, which provide hop-by-hop call control, routing and
SIP device location services
US DoD AS-SIP (Assured Services SIP)
Includes Session Control services (an AS-SIP term for the combination of AS-SIP
proxy/registrar service along with generic call control functions)
10
UC Solution Deployment Guide for Maximum Security Environments
Multipoint Conferencing Service
The Polycom UC solution provides a scalable set of services aimed at allowing multiple sites to connect and participate in a single videoconference. All multipoint services support connection of participants with the same or different call protocols, providing maximum interoperation. These services include:
Polycom Group Series multipoint conferencing – useful for small ad-hoc sessions with 4-6
participants.
Polycom RealPresence Collaboration Server (RMX)-based multipoint conferencing – a scalable set
of models allows for a wide range of conference types and services, with support for conference sizes ranging from a few participants to hundreds.
Polycom RealPresence Distributed Media Application (DMA)-based multipoint conference
management and load balancing – for larger deployments involving multiple RMX conferencing systems, the Polycom DMA product provides virtualized multipoint conferencing services, load balancing conferences across the set of RMX conferencing products that it manages.
Call Protocol Gateway Services
The Polycom RealPresence Collaboration Server (RMX) products provide point to point gateway services, allowing calls between endpoints that use different call protocols. Gateway combinations include:
PSTN H.320 PSTN H.323 PSTN SIP PSTN AS-SIP H.320 H.323 H.320 SIP H.320 AS-SIP H.323 SIP H.323 AS-SIP
Enterprise Directory Services
The Polycom UC solution provides integration with native directory services provided by the Polycom RealPresence Resource Manager (RPRM), whether directly or in concert with an integrated Microsoft Active Directory Server, as well as integration to some 3rd party directory servers.
Management Services
The Polycom UC solution includes several management services and capabilities, including:
Polycom RealPresence Resource Manager-based Management Services
Provisioning, monitoring and software maintenance for Polycom RealPresence Group Series
and HDX Series endpoints
11
UC Solution Deployment Guide for Maximum Security Environments
Monitoring of Polycom RealPresence Collaboration Server (RMX) products Monitoring of Polycom RealPresence Distributed Media Application (DMA) products Monitoring of Polycom RealPresence Recording and Streaming Server (RSS) 4000
Simple Network Management Protocol (SNMP)
Local Access Control Services
Each Polycom RealPresence platform product, as well as most 3rd party solution components, provide numerous access control mechanisms that govern who can access the system and what they can perform on the system once given access. These controls include user accounts, password policies, user account lockouts (which protect against brute force login attempts), idle session timeouts, and security banner displays.
Public Key Infrastructure (PKI) Services
PKI Service provides for X.509-based identity certificate exchange and validation to provide both secure and authenticated connections between network devices. Polycom RealPresence UC platform products as well as other supporting products and components in your network may require the use of PKI services. Creation and installation of X.509 identity certificates on all communicating products, along with configuration governing their use on the products is required in order to utilize PKI services. Further PKI services also require that certain PKI infrastructure components be present in the network infrastructure. For more information see Public Key Infrastructure Service
PKI service requires the following components within the network:
Certificate Authorities Certificate Revocation Checking Services
Certificate Authorities and Certificate Revocation Checking Services
Certificate revocation checking services provide a means for checking with the CA to see if a given identity certificate is still valid or has been revoked by that CA for some reason. There are two methods of revocation checking supported by the Polycom UC solution:
Online Certificate Status Protocol – this protocol allows a device to contact the CA via a special
service called an OCSP Responder to see if a certificate is valid or not. This method requires the existence of the OCSP Responder.
Certificate Revocation Lists – this method requires that a device have installed an up-to-date list of
all revoked certificates (called a Certificate Revocation List (CRL)) from each CA. This method relies only on the existence of the CA in the network.
OCSP (Online Certificate Status Protocol) Responder Configuration sections for a description of these components).
For more information see:
Certificate Revocation Checking Services / OCSP (Online Certificate Status Protocol) Responder Configuration
12
Loading...
+ 25 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use