Cisco JabberGuest

Cisco Jabber Guest
By: Sam Wang

([email protected])
April-2014
© 2012
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1
JabberGuest Setup
This session will cover
•Jabber Guest Intro
•Minimal/detailed steps to setup Jabber Guest with Expressway
This session is NOT about

•A best practice doc, instead, a working configuration.
Global Field Operations Cisco Confidential 3

© 2011 Cisco and/or its affiliates. All rights reserved.
http://jabberc-dev.cisco.com/call/email_signature.html

•You may hear about;
•Jabber for Windows/MAC
•Jabber for Mobile (iPhone, Android etc.)
•Jabber Video
•Jabber IM
•Jabber Voice
•Jabber Guest or JabberCall Me
•Jabber Movi
•CUCI-blah
•CE/Remote Access

It is a communication solution/product for a new market of “C2B
(consumer to business)” or “P2E(public to enterprise)”
It allows outside users (typical not part of enterprise, but maybe

customers, partners etc) to have a video call over Internet by click a link
but without registration/authentication

If you tried the “JabberCall Me” link and have something like below in
your email signature, you already knew what it is

•Enterprise
•CUCM v10
•Jabber Guest virtual machine (get the trial software at
https://communities.cisco.com/community/technology/collaboration/usergroups?view=overview)
https://cloudsso.cisco.com/idp/startSSO.ping?PartnerSpId=ciscomarketing&ACSIdx=1&TargetResource=
%2Fcommunity%2Ftechnology%2Fcollaboration%2Fusergroups%2Fcollaboration%2Fcisco_jabberc
•Expressway Core v8.1 (get the software at http://wwwin-collabsw.cisco.com)

•Expressway Edge v8.1 (same software as above, only license is different)
•DNS server (both internal/external)
•Certificate server
•One public ip address
•Video endpoints, such as 9971 IP phone, EX90 etc
•Firewall (optional)
•Consumer
•Web browser on PC/MAC/mobile devices (better with camera)
•JabberGuest link to access the enterprise

•JabberGuest software – EAP, no license
•CUCM v10, 60 days trial license
•Windows DNS/CA, trial license
•Expressway Core (trial license)
•Expressway Edge (TURN, Expressway, traversal and non-traversal calls,

dual NIC is optional)
•All above software are running as virtual machines, you must use
vCenter to deploy JabberGuest OVA

•Domain name, myhome.com
•CUCM, 1.1.1.15
•Expressway Core, 1.1.1.13
•Expressway Edge, 192.168.99.14
•JabberGuest, 1.1.1.20
•IP phone, 2.2.2.x
•DNS/CA, 1.1.1.16

•Underneath Networking
•DNS/CA server
•CUCM and IP phone/EX
•JabberGuest
•Expressway C/E

•Underneath Networking
•Public IP, NAT to Expressway Edge
•Internal routing

•DNS/CA server
•Internal DNS server
•Map CUCM, Expressway C/E, JabberGuest IP to hostname
•External DNS server - optional
•Map public IP to a hostname if necessary
•CA server
•Need issue 3 certificate (C/E, JabberGuest will generate certificate request)
•Optionally, issue certificate for CUCM
•Export the root cert, import it onto C/E, JabberGuest
•(C/E need base-64 encoded X.509, JG need DER encoded binary X.509)

•CUCM/IP Phone/EX
•Basic setup for IP phones/EX, make sure video call is working internally
•Create SIP trunk to Expressway – Core
•Create SIP trunk security profile (see next page picture)
•Check “SRTP Allowed” if use encryption
•Make sure inbound CSS can reach IP phones/EX
•Destination use IP or FQDN, port 5061
•SIP profile use “standard for Cisco VCS”
•Leave other fields as default

•JabberGuest
•Deploy the OVA template
•Initial login is root/jabbercserver or root/boxgrinder (depends on version)
•Installation guide can be found at
•https://communities.cisco.com/docs/DOC-36522
•After installation, access the JabberGuest by
•https//JabberGuest-IP-address/admin

•JabberGuest
•Create an user

•JabberGuest
•Create a link

•JabberGuest
•Settings

•JabberGuest
•Settings, create a CSR to CA, import signed cert

•JabberGuest
•Settings, Call control setup (continueN next page)

•JabberGuest
•Settings, Call control setup

•JabberGuest
•Settings, Call control setup

•JabberGuest
•SSH to JabberGuest, modify /opt/cisco/jabberc/etc/sipconfig.xml
[root@JABBERGUEST20 etc]# cat sipconfig.xml
<?xml version='1.0' encoding='UTF-8'?>

<sip-config>
<sip-server>1.1.1.13</sip-server>
</sip-config>
Reboot the JabberGuest server

•Expressway Edge
•Deploy OVA
•Base config, such as IP, DNS, NTP etc
•Apply necessary licenses
•Create an user for authentication, this username/pwd need to be configured
on Expressway Core

•Expressway Edge
•Create a traversal zone (Server) toward Expressway Core

•Expressway Edge

•Expressway Edge

•Expressway Edge
•Enable Unified Communication

•Expressway Edge
•Configure TURN

•Expressway Edge
•Enable hidden menu (Experimental)
http://192.168.99.14/setaccess

•Expressway Edge
•Enable hidden menu (Experimental, qwertsys)

•Expressway Core
•Deploy OVA
•Base config, such as IP, DNS, NTP etc
•Create an ADMIN account, name is
“turnturn”, to be used in JabberGuest
Media control page

•Expressway Core
•Create a traversal zone (Client) toward Expressway Edge

•Expressway Core

•Expressway Core

•Expressway Core
•Create a neighbor zone toward CUCM

•Expressway Core
•Create a neighbor zone toward CUCM

•Expressway Core
•Create a neighbor zone toward JabberGuest

•Expressway Core
•Create a neighbor zone toward JabberGuest

•Expressway Core
•Enable JabberGuest for the domain

•Expressway Core
•Enable Unified Communication

•Expressway Core
•Add JabberGuest Server
•Refer to previous page, click “Configure JabberGuest Server”, put

JabberGuest FQDN

•Expressway Core
•TURN configuration (applicationB2BUATURN server)
•TURN (Traversal Using Relays for NAT, RFC5766) or STUN (Session
Traversal Utilities for NAT)

•It is not supported but working
•CUCM v10 with 9971 or EX90 phone
•JabberGuest
•Create a SIP trunk between CUCM and JabberGuest
•Follow slides above to create user/link on JabberGuest
•https://JabberGuest-IP/call/33

http://iwe.cisco.com/web/expressway/documents/-
/document_library/view?_20_folderId=788505846
http://www.cisco.com/c/en/us/products/unified-communications/expressway-
series/index.html
http://www.cisco.com/c/en/us/support/unified-communications/expressway-
series/products-installation-and-configuration-guides-list.html
http://www.cisco.com/c/en/us/products/collateral/unified-
communications/telepresence-video-communication-server-vcs/data_sheet_c78-
697073.html
http://en.wikipedia.org/wiki/STUN
http://en.wikipedia.org/wiki/Traversal_Using_Relays_around_NAT

Q/A

Cisco JabberGuest

Uploaded by

Copyright:

Available Formats

Cisco JabberGuest

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Cisco JabberGuest

Uploaded by

Copyright:

Available Formats

Cisco Jabber Guest

By: Sam Wang

•Minimal/detailed steps to setup Jabber Guest with Expressway

This session is NOT about

Global Field Operations Cisco Confidential 3

Global Field Operations Cisco Confidential 4

Global Field Operations Cisco Confidential 7

It allows outside users (typical not part of enterprise, but maybe

Global Field Operations Cisco Confidential 8

Global Field Operations Cisco Confidential 9

•Expressway Core v8.1 (get the software at http://wwwin-collabsw.cisco.com)

Global Field Operations Cisco Confidential 12

•CUCM v10, 60 days trial license

•Windows DNS/CA, trial license

•Expressway Core (trial license)

•Expressway Edge (TURN, Expressway, traversal and non-traversal calls,

Global Field Operations Cisco Confidential 13

•Expressway Core, 1.1.1.13

•Expressway Edge, 192.168.99.14

•IP phone, 2.2.2.x

Global Field Operations Cisco Confidential 16

•CUCM and IP phone/EX

Global Field Operations Cisco Confidential 19

Global Field Operations Cisco Confidential 20

Global Field Operations Cisco Confidential 21

Global Field Operations Cisco Confidential 22

•Initial login is root/jabbercserver or root/boxgrinder (depends on version)

•Installation guide can be found at

•After installation, access the JabberGuest by

Global Field Operations Cisco Confidential 24

Global Field Operations Cisco Confidential 25

Global Field Operations Cisco Confidential 26

Global Field Operations Cisco Confidential 27

Global Field Operations Cisco Confidential 28

Global Field Operations Cisco Confidential 29

Global Field Operations Cisco Confidential 30

Global Field Operations Cisco Confidential 31

[root@JABBERGUEST20 etc]# cat sipconfig.xml

<?xml version='1.0' encoding='UTF-8'?>

Reboot the JabberGuest server

Global Field Operations Cisco Confidential 32

Global Field Operations Cisco Confidential 33

Global Field Operations Cisco Confidential 34

Global Field Operations Cisco Confidential 35

Global Field Operations Cisco Confidential 36

Global Field Operations Cisco Confidential 37

Global Field Operations Cisco Confidential 38

Global Field Operations Cisco Confidential 39

Global Field Operations Cisco Confidential 40

Global Field Operations Cisco Confidential 41

Global Field Operations Cisco Confidential 42

Global Field Operations Cisco Confidential 43

Global Field Operations Cisco Confidential 44

Global Field Operations Cisco Confidential 45

Global Field Operations Cisco Confidential 46

Global Field Operations Cisco Confidential 47

Global Field Operations Cisco Confidential 48

Global Field Operations Cisco Confidential 49

Global Field Operations Cisco Confidential 50

•Refer to previous page, click “Configure JabberGuest Server”, put