Dear All,
I have setup an UCM / CMS based infrastructure, but I am not able to use srtp between a CMS room and a Jabber client.
The TLS signaling is building up with no problem, only the SRTP does not work.
The following error message I see all the time:
tearing down unencrypted call 'ef4d4ac9-2767-48cf-8f8c-3dd91045fd9e' because encryption is required
call 131: ending; local teardown, encryption required - connected for 0:00
Here you can see what I configured:
CUCM setup:
- Certificates
Internal PKI cert assigned to tomcat, callmanager, ipsec
- Secure SIP Security Profile
Device Security Mode: Encrypted
Incoming Transport Type: TLS
Outgoing Transport Type: TLS
X.509 Subject Name: cms.domain.local
Accept Replaces Header
- SIP trunk
SRTP Allowed
Secure SIP Security Profile
Standard SIP Profile For TelePresence Conferencing
Normalization Script: cisco-meeting-server-interop
CMS setup
- Certificates
Internal PKI cert assigned to webadmin, xmpp, callbridge
- Outbound calls
Domain *.*
SIP Proxy: cucm.domain.local:5061
Local from domain: conf.domain.local
Trunk type: Standard SIP
Encryption: Auto
- Call settings
SIP media encryption: allowed
- CallLegProfile
Name: sipMediaEncryptionRequired
sipMediaEncryption: required
- coSpace
CallLegProfile: sipMediaEncryptionRequired
Is there anything I missed?
Thanks,
Laszlo