Configuring UCC

The following topics are discussed in this section:

• Enabling Unified Communications
  • Enabling Retain Client QoS
  • Editing a Protocol
• Configuring Devices for Session Prioritization
  • OpenFlow Configuration
• SDN API-Based Classification
  • Configuring SDN Manager for SDN API
  • HTTPS Connectivity with SDN Manager
• Heuristics Classification
  • Configuring ACLs on Controllers for Media Classification
  • Configuring UCC
  • Creating a Management Server Profile on Controller
  • Configuring Devices for Session Visibility

Enabling Unified Communications

To access the Unified Communications application, obtain a valid subscription. To obtain a subscription for the Unified Communications application, contact the Aruba Central Sales team.

To enable Unified Communications, complete the following steps:

1. In the Network Operations app, set the filter to Global.
2. Under Manage, click Applications > UCC.
3. Click the Config icon.

   The Settings page is displayed.

4. Move the Activate UCC slider to the right.

   The Unified Communications is enabled.

Enabling Retain Client QoS

When retain client QoSQuality of Service. It refers to the capability of a network to provide better service and performance to a specific network traffic over various technologies. is enabled, all configured ALGs are disabled, all traffic is treated as Real-Time Transport Protocol (RTPReal-Time Transport Protocol. RTP is a network protocol used for delivering audio and video over IP networks.) traffic, default prioritization defined by the client is honored, and call visibility is provided.

To enable retain client QoS, complete the following steps:

1. In the Network Operations app, set the filter to Global.
2. Under Manage, click Applications > UCC.
3. Click the Config icon.

   The Settings page is displayed.

4. Move the Retain Client QoS slider to the right.

Editing a Protocol

To edit a protocol, complete the following steps:

1. In the Network Operations app, set the filter to Global.
2. Under Manage, click Applications > UCC.
3. Click the Config icon.

   The Settings page is displayed with the Protocols table.

4. In the Protocols table, hover over the required protocol and click the icon in the Action column.

   Unified Communications supports SIPSession Initiation Protocol. SIP is used for signaling and controlling multimedia communication session such as voice and video calls. , Skype for Business, and Wi-FiWi-Fi is a technology that allows electronic devices to connect to a WLAN network, mainly using the 2.4 GHz and 5 GHz radio bands. Wi-Fi can apply to products that use any 802.11 standard. Calling protocols.

5. Edit the parameters listed in Protocol Parameters.

   Table 1: Protocol Parameters

   Parameter	Description
   Voice	Configure voice priority tag.
   Video	Configure video priority tag.
   DNSDomain Name System. A DNS server functions as a phone book for the intranet and Internet users. It converts human-readable computer host names into IP addresses and IP addresses into host names. It stores several records for a domain name such as an address 'A' record, name server (NS), and mail exchanger (MX) records. The Address 'A' record is the most important record that is stored in a DNS server, because it provides the required IP address for a network peripheral or element. Pattern	Configure the carrier for Wi-Fi calling.

6. Click Save Settings.

Adding Carriers to Wi-Fi Calling Protocol

To add carriers to the Wi-Fi Calling protocol, complete the following steps:

1. In the Network Operations app, set the filter to Global.
2. Under Manage, click Applications > UCC.
3. Click the Config icon.
4. Hover over the Wi-Fi Calling protocol and click the icon in the Action column.

   The Edit Wi-Fi Calling page is displayed.

5. Click Show Advanced Setting.

   The DNS Pattern table displays the default carriers list.

6. Click + to add a new carrier.

   The DNS Pattern window is displayed.

7. Specify Carrier Name and DNS Pattern.
8. Click Save.

   The new carrier name is displayed in the DNS Pattern table.

Configuring Devices for Session Prioritization

Based on the ArubaOS software version, controllers support session prioritization using both SDNSoftware-Defined Networking. SDN is an umbrella term encompassing several kinds of network technology aimed at making the network as agile and flexible as the virtualized server and storage infrastructure of the modern data center. APIApplication Programming Interface. Refers to a set of functions, procedures, protocols, and tools that enable users to build application software. and heuristics as the source for information. If both methods are enabled, the SDN API-based Skype for Business classification takes precedence.

OpenFlow Configuration

For both SDN API and heuristics-based classification and prioritization, OpenFlowOpenFlow is an open communications interface between control plane and the forwarding layers of a network. configuration is required.

• In the SDN API-based Skype for Business classification method, the Unified Communications application receives the media identification data from the SDN Manager and call quality report from the devices through OpenFlow.
• In heuristics-based media classification method, the Unified Communications application receives media identification and the call quality reports from the devices through OpenFlow.

Enabling OpenFlow on Controller

To enable the OpenFlow on controller, issue the following commands in the CLI:

To enable OpenFlow in the user-role and virtual AP of a controller, issue the following commands in the CLI:

Enable OpenFlow on Switch

To enable OpenFlow on switch:

1. To configure OpenFlow on switch, issue the following commands in the CLI:
   (host)# configure terminal (host)(config)# openflow (host)(openflow)# controller-id <number> ip <ip-addr-of-OFC> port <OFC-TCPTransmission Control Protocol. TCP is a communication protocol that defines the standards for establishing and maintaining network connection for applications to exchange data. -port> controller-interface vlanVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. <vlan-id-used-to-connect-to-OFC> (host)(openflow)# write memory (host)(openflow)# exit
2. To configure OpenFlow instance on switch, issue the following commands in the CLI:
   (host)# configure terminal (host)(config)# openflow (host)(openflow)# instance <instance-name> (host)(openflow)# member vlan <vlan-id-of-the-member> (host)(openflow)# controller-id <same as the number given for controller-id in the OFC details> (host)(openflow)# version 1.3 (host)(openflow)# pipeline-model standard-match (host)(openflow)# exit
3. To enable OpenFlow and OpenFlow instance on switch, issue the following commands in the CLI:
   (host)(config)# configure terminal (host)(config)# openflow instance <instance-name> enable (host)(config)# openflow enable (host)(config)# exit 

Enabling OpenFlow on AP

If the Unified Communications subscription is enabled on the APs, OpenFlow is automatically enabled on the APs. Therefore, no explicit configuration from the user is required for enabling OpenFlow.

SDN API-Based Classification

For the Lync/Skype for Business SDN API to dynamically prioritize traffic at the edge of a network using OpenFlow, the OpenFlow controller and its instances must be configured on switches. For information on configuring OpenFlow instances, see OpenFlow Configuration.

Configuring SDN Manager for SDN API

To enable Skype SDN Manager to send XMLExtensible Markup Language. XML is a markup language that defines a set of rules for encoding documents in a format that is both human-readable and machine-readable. messages to the Unified Communications application, complete the following configuration:

1. Log in to the Skype SDN Manager.
2. Ensure that you have the SDNManager.exe program installed.
3. Open the command prompt and go to the folder in which the SDNManager.exe program is installed.
4. Execute the following command:

HTTPS Connectivity with SDN Manager

The customer premises with the Lync/Skype for Business SDN infrastructure must access Aruba Central through an HTTPSHypertext Transfer Protocol Secure. HTTPS is a variant of the HTTP that adds a layer of security on the data in transit through a secure socket layer or transport layer security protocol connection. connection only. Aruba Central acts as a server while Lync/Skype for Business SDN Manager acts as a client.

For the client and server mutual authentication and TLSTransport Layer Security. TLS is a cryptographic protocol that provides communication security over the Internet. TLS encrypts the segments of network connections above the Transport Layer by using asymmetric cryptography for key exchange, symmetric encryption for privacy, and message authentication codes for message integrity. handshake, the client must have a root CACertificate Authority or Certification Authority. Entity in a public key infrastructure system that issues certificates to clients. A certificate signing request received by the CA is converted into a certificate when the CA adds a signature generated with a private key. See digital certificate. certificate provided by GeoTrust to validate the certificate presented by Aruba Central.

Heuristics Classification

In the heuristics method, APs perform deep packet inspection on the Skype for Business traffic to determine Skype for Business voice and video traffic. For the heuristics classification method, no changes or additional components are required on the Skype for Business server.

The heuristics classification method includes the following steps:

• ACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. definition on the controller to listen on port TCP 5061 and 5063. The classify-media option in the ACL is enabled and is mapped to a user role.
• When the Skype for Business calls are established, classify-media in the ACL is triggered and Skype for Business clients are marked as media-capable clients.
• Any subsequent UDPUser Datagram Protocol. UDP is a part of the TCP/IP family of protocols used for data transfer. UDP is typically used for streaming media. UDP is a stateless protocol, which means it does not acknowledge that the packets being sent have been received. data flow with source/destination port numbers above 1023 from or to media-capable users go through the Skype for Business media DPIDeep Packet Inspection. DPI is an advanced method of network packet filtering that is used for inspecting data packets exchanged between the devices and systems over a network. DPI functions at the Application layer of the Open Systems Interconnection (OSI) reference model and enables users to identify, categorize, track, reroute, or stop packets passing through a network. .
• If an RTP session is based on DPI, the payload type in the RTP header is used to determine if it is a voice or video session.

Configuring ACLs on Controllers for Media Classification

If the controllers are running ArubaOS 6.5.x release version, configure the following commands to classify media:

or

or

For more information on configurations steps related to heuristics classification method, see the ArubaOS User Guide.

Creating a Management Server Profile on Controller

If the controllers are running ArubaOS 6.5.x.x or 8.x.x.x, configure the controllers to send call session data through AMONAdvanced Monitoring. AMON is used in Aruba WLAN deployments for improved network management, monitoring and diagnostic capabilities. periodically. After Aruba Central receives these AMON messages, it displays the aggregated and per-client statistics on the Unified Communications > Activity page. This helps the administrator to assess the overall health and troubleshoot issues if any.

To configure the management server profile on controller:

1. Access the controller CLI.
2. Configure the following commands:
   (host)(config)# mgmt-server profile <name> (host)(Mgmt Config profile “<name>”)# uccmonitoring-enable (host)(Mgmt Config profile “<name>”)# stats-enable (host)(Mgmt Config profile “<name>”)# sessions-enable (host)(Mgmt Config profile “<name>”)# monitored-info-enable (host)(Mgmt Config profile “<name>”)# monitored-info-del-enable (host)(Mgmt Config profile “<name>”)# monitored-info-snapshot-enable (host)(Mgmt Config profile “<name>”)# mgmt-server primary-server <Central-SE-cluster-virtual IP> profile <profile-name> (host)(Mgmt Config profile “<name>”)# write memory (host)(openflow)# exit

Configuring Devices for Session Visibility

If the controllers are running ArubaOS 6.5.x.x or 8.x.x.x, configure the controllers to send call session data through Application Monitoring (AMON) periodically. After Aruba Central receives these AMON messages, it displays the aggregated and per-client statistics in the UI. This helps the administrator to assess the overall health and troubleshoot issues if any.

To enable controllers to send AMON feeds about Unified Communications statistics to Aruba Central, ensure that the Aruba Central management server profile is configured on the controller.

To configure the management server profile, complete the following steps:

1. Access the controller CLI.
2. Configure the following commands:
   (host)(config)# mgmt-server profile <name> (host)(Mgmt Config profile “<name>”)# uccmonitoring-enable (host)(Mgmt Config profile “<name>”)# write memory (host)(openflow)# exit

For more information about configuration required for the Unified Communications application on the controller, see the ArubaOS User Guide.