Index

Help contents > Configuring the MCU > Configuring encryption settings

Configuring encryption settings

You can configure the MCU to encrypt connections to and from H.323 endpoints.

The encryption technology that the MCU uses is Advanced Encryption Standard (AES).

To use encryption, you must have the Encryption feature key present on the MCU. For information about installing feature keys, refer to Upgrading the firmware. To access encryption settings, choose Settings > Encryption.

When encryption is in use, the MCU will encrypt audio, video, and content media. It does not encrypt control or authentication information.

You can:

• configure the MCU to advertise its ability to encrypt connections, such that it will use encryption if an H.323 endpoint can use AES encryption
• configure the MCU so that the default encryption option for new conferences is either Optional or Required. Be aware that anyone creating a new conference will be able to set the encryption setting for the conference to either Optional or Required
• force new ad hoc conferences to use encryption

Note that using encryption does not affect the number of ports that are available on the MCU.

Note that SIP endpoints will be unable to connect to conferences that require encryption. There is no standard for encryption on SIP.

Note that the MCU will not show thumbnail previews on the Conference participant page if encryption is required for a conference. If you have the Show thumbnail images option selected on the Settings > User interface page, thumbnail previews will be shown for conferences where encryption is optional and there are encrypted participants.

Refer to this table for assistance configuring the encryption settings. After making any configuration changes, click Apply changes.

Field	Field description	Usage tips
Encryption status	Whether the MCU is able to use encryption or not.	When encryption status is enabled, the MCU advertises itself as being able to use encryption and will use encryption if required to do so by an H.323 endpoint. If this setting is enabled, you can enable or disable the use of encryption on a per-conference basis. If this setting is disabled, no conference will be able to use encryption.
Default setting for new scheduled conferences	The default encryption setting for new scheduled conferences (on the Conference list > Add conference page).	When you (or another user) create a new conference (by choosing Conferences and clicking Add new conference), you can set the encryption setting for the conference to be either Allowed or Required. This control defines which option is selected by default. However, when creating a conference this can be changed.
Encryption required for new ad hoc conferences	When enabled, this setting forces encryption to be used for new ad hoc conferences.	Note that if encryption is required for ad hoc conferences, SIP endpoints will not be able to join ad hoc conferences. Changing this setting will have no effect on currently active ad hoc conferences; however, when an ad hoc conference is running, whether or not encryption is required for that conference can be configured (go to Conferences, select the conference you require and select the Configuration tab).

Related topics

• Adding and updating conferences
• Upgrading the firmware