Обзор cisco jabber 11-2015
TRANSCRIPT
© 2014-2015 Elcore | Elko.by. All rights reserved. 2
Что такое Jabber
Основной функционал
Поддерживаемые платформы
© 2014-2015 Elcore | Elko.by. All rights reserved. 3
Cisco Jabber набор интегрированных приложений унифицированных коммуникаций для гибкого и бесшовного взаимодействия между пользователями с использованием различных методов: IM, presence, audio и video calling, voicemail, conferencing
Cisco Jabber доступен для:
• Cisco Jabber for Android
• Cisco Jabber for iPhone and iPad
• Cisco Jabber for Mac
• Cisco Jabber for Windows
Что такое Jabber
© 2014-2015 Elcore | Elko.by. All rights reserved. 5
Cisco Jabber единая эргономика использования на широком спектре устройств
Desktop Tablet Smartphone Web-интеграция
Jabber
SDK
Презентация на примере Jabber for Windows
© 2014-2015 Elcore | Elko.by. All rights reserved. 6
Архитектура решения
Ключевые компоненты
© 2014-2015 Elcore | Elko.by. All rights reserved. 7
3 модели внедрения Jabber
Сisco UC Manager
IM & Presence
реализуются на базе on-premises (IM&P сервер), cloud
(Webex Messenger Service*)
*Webex Messenger в составе Webex EE или Webex Meeting Center
или гибридной модели
© 2014-2015 Elcore | Elko.by. All rights reserved. 8
Jabber – полная архитектура решения (гибридная)
Unified
CM
Expressway-E Expressway-C
IM&P
Server
LDAP
AD
Conductor TelePresence
Server
Unity
Connection
Exchange
Server WebEx
Meetings Center*
Jabber Clients (Corporate Network)
DNS
CertAuth
Internet
Home
Office Coffee
Shop
B2B Federated
Organizations
DX
Core Infrastructure Services
Cisco Collaboration Endpoint Mobile and Remote Access или VPN
Internet Services
Federation
Cisco Webex Messenger
*Webex Meetings Server – в случае on premise
WEB-
конференции
Webex
MC
Softphone mode Deskphone mode
© 2014-2015 Elcore | Elko.by. All rights reserved. 11
User Login
Service Discovery
Single Sign On
© 2014-2015 Elcore | Elko.by. All rights reserved. 12
Cisco Jabber Login Screen автоматический service discovery
Вход в Jabber упрощен за счет автоматизации поиска сервисов (service discovery)
Все что нужно пользователю – ввести username (Jabber ID = email) и password
Все UC сервисы, ассоциированные с ним обнаружатся автоматически
© 2014-2015 Elcore | Elko.by. All rights reserved. 13
Cisco Jabber Login Screen автоматический service discovery – более детально
Jabber через DNS
SRV запрашивает
адрес сервера
CUCM IM&P для
своего домена
Jabber через HTTP-
запрос к WebEx CAS
сервису запрашивает
сконфигурен ли
Webex для его
домена
1
1
2
DNS через запись
SRV возвращает
адрес сервера
CUCM IM&P для
этого домена
2
Этот домен не
является
сконфигуренным
Webex-доменом MS AD
CUCM IM&P
Аутентификация и
загрузка сервисного
профиля и файла
конфигурации Jabber
(c TFTP) для
конкретного
пользователя
3 4
Mobile Request for Expressway
через DNS SRV 1
© 2014-2015 Elcore | Elko.by. All rights reserved. 14
If required (or if discovery fails) manual configuration can be used
User can specify operating mode and server addresses
Manual configuration not available for remote access operation via Cisco Expressway
Jabber cache for manual settings
Manual settings also take higher priority over SRV records
Cisco Jabber Login Screen ручной service discovery
© 2014-2015 Elcore | Elko.by. All rights reserved. 15
Single Sign On
Jabber 10.5 поддерживает SAMLv2 based SSO
Поддержка в cloud, on premise и hybrid дизайнах
Минимум UC Manager 10.5 +
Пользователи Jabber аутентифицируются один раз на Identity Provider (IdP) для авторизации и последующего доступа к своим сервисам
Пользователи не вводят несколько раз свои атрибуты доступа для различных UC сервисов
Поддерживаемые IdPs’
Ping Federate 6.10.0.4
Microsoft AD Federation Services (ADFS) 2.0
OpenAM 10.1
Embedded browser (form based), Smart card and Kerberos Authentication supported
© 2014-2015 Elcore | Elko.by. All rights reserved. 16
Embedded Browser
OS Windows MAC iOS Android
Underlying
browser
technology
IE Safari WebKit WebKit
Control shares
cookies with
native OS
browser
Yes Yes NO NO
When Jabber connects to the IdP, the IdP will
provide a web form that will be displayed within
an embedded browser (browser within Jabber)
Automatically resizes
Returns to original size after authentication
Authentication process delegated from Jabber
to the browser
Browser will be able to utilize IdP cookie to gain
authorization to other SSO enabled services
(e.g. WebEx Meetings)
The Browser abstracts the client from details
of:
IdP interaction and re-directs
IdP Login Screen
Password reset mechanism
© 2014-2015 Elcore | Elko.by. All rights reserved. 17
SSO Login Flow – Embedded Browser
Jabber initiates
service discovery
based on UPN
(cholland@exam
ple.com)
DNS
SRV
lookup
Messenger HTTP Request to
CAS URL for
example.com
2
example.com is
not WebEx
domain
UCM UDS
address
Central
UCM UDS
Look for home UCM
Home
cluster
address
Home
UCM
Cluster Authorization
request
Redirect
to IdP
Request
Authenticati
on form
Authentication
form
Authenticati
on
Embedded
browser
IdP Cookie
Service
cookie Authorize
Connect to
services
© 2014-2015 Elcore | Elko.by. All rights reserved. 18
Single Sign On
© 2014-2015 Elcore | Elko.by. All rights reserved. 19
Jabber Layout
Jabber Docked Window
User Defined DHTML Tabs
© 2014-2015 Elcore | Elko.by. All rights reserved. 20
Cisco Jabber пользовательский интерфейс
The Jabber for Windows client provides two user interface options
Hub Window: Full Contact list with search and access to call history, voicemail and meetings
Docked window: A small window at the top of the screen and allows users to quickly access common functions
© 2014-2015 Elcore | Elko.by. All rights reserved. 21
Contact Search
История звонков
Календарь
Интеграция
Cписок контактов
Фотография и статус Menu
Contact & Presence State
Выбор устройства/
переадресации
Cisco Jabber Hub Window пользовательский интерфейс
Голосовая почта
Чаты
© 2014-2015 Elcore | Elko.by. All rights reserved. 22
Contact
Search
Bring active
window to front
Audio
mute/unmute
Call History
Voicemail and
new message
count
Display full hub
view
End Call
Only shown during call
Cisco Jabber Docked Window пользовательский интерфейс
© 2014-2015 Elcore | Elko.by. All rights reserved. 23
Dock window прячется off-screen при неиспользовании
При наведении мышки, окно появляется on-screen
Уведомления остаются видимыми при off-screen
Dock window можно перемещать горизонтально вверху
Dock window фиксируется пользователем
Cisco Jabber Docked Window пользовательский интерфейс
© 2014-2015 Elcore | Elko.by. All rights reserved. 24
Jabber for Windows 9.2 introduces the ability for users to install their own custom tabs (to display HTML based web pages)
User select File>New>Custom Tab
Feature can also be administratively disabled
User enters Title and Page URL, a Icon be specified or Jabber will use web site icon or default icon if not available
BBC Weather (Mobile edition)
User Defined DHTML Tabs
© 2014-2015 Elcore | Elko.by. All rights reserved. 25
Jabber IM Only
Jabber Phone Mode
Jabber Full UC
© 2014-2015 Elcore | Elko.by. All rights reserved. 26
Варианты внедрения
• Start with the features you need
Jabber IM Only
(Includes
Jabber
for Everyone
and
desk phone
control)
Jabber Phone
Mode
Media
Termination
Start Solution with… Start Solution with… Start Solution with… Instant Messaging
Voice and Video
Unified Communications
Jabber Full UC
IM and Media
Termination
1 2
3
© 2014-2015 Elcore | Elko.by. All rights reserved. 27
Install Mode Jabber for Everyone (IM-only) Jabber Full UC Jabber Phone mode
Standards based Instant Messaging and Presence
User managed Contact list with groups
Directory search (Active Directory/LDAP)
MS Outlook Contact search
Soft phone Standards based Voice and Video Calling
Desk Phone Control
Desk phone Control with video support
Extend and Connect 3rd party PBX/PSTN phone control
Video Desktop Sharing (BFCP Standards based)
Visual Voicemail (Unity Connection)
Call History
WebEx Meetings Integration
(incl support for Outlook, Notes, Google)
Admin/User defined custom DHTML Tabs
Microsoft Office Integration (Office 2007/2010/2013)
Сравнение функционала в разных режимах
© 2014-2015 Elcore | Elko.by. All rights reserved. 28
Presence
Jabber p2p Chat
Jabber Group Chat
Persistent chat
File Transfer
Screen Capture
IM Federation
IM Encryption On-Prem and Cloud
© 2014-2015 Elcore | Elko.by. All rights reserved. 29
Presence статус доступности
Отображение доступности
(статуса) коллег
Статус динамически
обновляется
(пользовательский выбор,
кастомизация статуса,
состояние телефона,
календаря, webex)
Cтатус передается
интегрируемым
пользовательским
приложениям (outlook, web)
© 2014-2015 Elcore | Elko.by. All rights reserved. 30
Instant Messaging мгновенные сообщения - чат
Обмен мгновенными сообщениями внутри
компании (на базе протокола XMPP)
Шифрование (AES) личных и групповых чатов
Протоколирования истории чата на стороне
клиента и на стороне сервера (Compliance)
Временные (Ad-hoc) p2p и групповые чаты
Постоянные чаты (Persistent)
Междоменная федерация IM&P
XMPP - Extensible Messaging and Presence Protocol
© 2014-2015 Elcore | Elko.by. All rights reserved. 31
Escalations to voice/video Current Conversations
Эмоиконки Send File
Format Group Chat
Снимок экрана
Contact Search
Instant Messaging p2p чат
© 2014-2015 Elcore | Elko.by. All rights reserved. 32
Set Group
Chat Subject
Add participants (including
directory search)
Instant Messaging групповой чат – как инициировать чат
Supported in both On Premise and Cloud based IM&P modes
© 2014-2015 Elcore | Elko.by. All rights reserved. 33
GC Invite Notification Accepted GC Chat Window Declined GC Chat Window
Cписок участников:
инициатор и участники в
алфавитном порядке
Instant Messaging приглашение в групповой чат
Участник отклонил
приглашение
Участник может
принять или отклонить
© 2014-2015 Elcore | Elko.by. All rights reserved. 34
Multi-Party
Chat Session Участники чата
Instant Messaging окно группового чата
voice/video звонки Текущие беседы
Add to Group
Chat
© 2014-2015 Elcore | Elko.by. All rights reserved. 35
По умолчанию Persistent Chat заблокирован
Для его активации внесите правки в серверные настройки и конф. файл (jabber-config.xml)
Instant Messaging постоянный чат
Persistence
Chat
© 2014-2015 Elcore | Elko.by. All rights reserved. 36
Name: Name of the persistent chat room that will appear in the room catalog
Description: Text to describe the purpose of the persistent chat room. Text appears under the room name in the room catalog
Type: Specifies the access rights to the room.
Public rooms do not maintain a member list
Users must be invited to a restricted room
Location: Specifies the database server where the room be created
Add to “My rooms”: Administrator can add room to “My rooms” on creation
Moderators: Specify up to 30 moderators per room. Moderators have similar access rights to administrators but cannot change room type or destroy a room
Instant Messaging постоянный чат - администрирование
© 2014-2015 Elcore | Elko.by. All rights reserved. 37
My rooms
List of rooms to which I have joined
All rooms
List of all rooms provisioned on system
Ability to join open rooms from here
Instant Messaging постоянный чат – список комнат
© 2014-2015 Elcore | Elko.by. All rights reserved. 38
Ability to transfer files within
an IM window
You can also drag a file on to
the chat windows to transfer
that file
Instant Messaging передача файлов
© 2014-2015 Elcore | Elko.by. All rights reserved. 39
Chat window
automatically
minimizes
and returns
when
capture is
complete
Hold Shift
while
screen
capture to
retain chat
window
Instant Messaging передача копии экрана
© 2014-2015 Elcore | Elko.by. All rights reserved. 40
© 2014-2015 Elcore | Elko.by. All rights reserved. 41
IM Only Screen Share во время чата
Screen share во время IM сессии
Не требуется активного звонка
Поддержка multiparty screen share – 1 + 5 участников
Поддержка Remote Desktop Control
Не зависит от режима работы
Softphone mode и deskphone mode поддерживаются
Protocols & Port Numbers
IM Screen share capabilities negotiated through xmpp session
IM Screen share media selects a random TCP port ranging from 49152 to 65535
Кнопка screen share
Получатель может accept или
decline share invitation
© 2014-2015 Elcore | Elko.by. All rights reserved. 42
IM Only Screen Share remote control
Тот, кто показывает экран:
Получает уведомления кто видит его экран
Stop sharing button появляется сверху экрана
Те, кто видят экран: Экран отображается в новом
окне Ability to take over sharing (invite
is sent) Запросить remote control – take
over sharing. Увеличить до полного окна
© 2014-2015 Elcore | Elko.by. All rights reserved. 43
IM Only Screen Share remote control
Тот, кто показывает экран:
Accept или decline на запрос remote control
Может в любой момент отменить remote control
© 2014-2015 Elcore | Elko.by. All rights reserved. 44
Presence and Instant Messaging междоменная федерация
Обмен мгновенными сообщениями и статусом
доступности между компаниями (B2B, B2C)
XMPP и SIP – стандарты и доминирующие
протоколы на рынке для организации
федерации IM&P
Google Talk
Google’s standards based IM
and presence service
IBM Sametime
IBM Sametime via XMPP
gateway server
Microsoft Lync
Microsoft Lync using XMPP
gateway role.
AOL
Public federation to AOL users
* requires addition order option
Sametime
XMPP Standard Federation
Standards based XMPP
domains including Cisco IM &
Presence server
XMPP
Gateway
XMPP
Gateway
Cisco ASA
TLS SIP
Proxy
Cisco
CUCM
IM&P
SIP/SIMPLE or XMPP Federation
Cisco
Jabber
Client
Internet
© 2014-2015 Elcore | Elko.by. All rights reserved. 45
On Premise: Encryption
Jabber connection to Cisco IM&P server by default uses TLS encryption
Server to server traffic is not encrypted by default
XMPP within TLS
AES 256
Jabber for Windows Client
Jabber for Windows Client
IM Logging Service
IM&P Node
Cisco IM&P
Optional Encryption
© 2014-2015 Elcore | Elko.by. All rights reserved. 46
Cloud: Encryption
Jabber 9.0+ connection to WebEx messenger cloud by default uses 128 bit TLS encryption
Data-at-rest is not encrypted which allows IM logging capabilities in the cloud
Data-at-rest is protected by means of stringent Data Centre security including SAS 70 Type II audits
Jabber for Windows Client
Jabber for Windows Client
IM Logging Service
IM Routing Service
XMPP within TLS
AES 128
© 2014-2015 Elcore | Elko.by. All rights reserved. 47
Cloud: Encryption
Jabber for Windows 9.1 introduces optional end to end 256 bit AES encryption
Data is never unencrypted between endpoints
IM logging is not possible in the model as cloud can’t decrypted messages.
IM payload is encrypted using AES 256 bit
Jabber for
Windows Client Jabber for
Windows Client
IM Logging Service
IM Routing Service
XMPP within TLS
AES 256
© 2014-2015 Elcore | Elko.by. All rights reserved. 48
Если у пользователя несколько зарегистрированных на IM&P устройств
Первое сообщение – broadcast
После ответа – unicast на то устройство, с которого ответили
Если ответ с нового устройства - unicast на новое устройство
Multiple Resource Login
© 2014-2015 Elcore | Elko.by. All rights reserved. 49
Поиск контактов
Voice & Video Calling
Jabber Operating Modes
Make a Call
Call Control Features
Device Selection
Desk phone Video
Conferencing
Call History & Voice mail
Интеграция
© 2014-2015 Elcore | Elko.by. All rights reserved. 50
• Escalation to Voice/Video, Screen Share, or WebEx Meetings
• Jabber for Windows allows its users to add real-time media to its current chat session
• Voice/video can be started to have a face-to-face conversation. Web meetings can be hosted
• Users can share their desktop with the person they are chatting with
Варианты расширения коммуникаций
© 2014-2015 Elcore | Elko.by. All rights reserved. 51
Поиск контактов
• With Jabber for Windows, users can start searching for their coworkers just by typing their name or user ID
• The search algorithm is optimized to reduce the number of inquiries to the directory server
• It searches in the user’s contacts list, then the recent history, and finally the directory server
© 2014-2015 Elcore | Elko.by. All rights reserved. 52
Осуществление звонка
• Using telephone numbers or SIP URI Dialing
• URI dialing allows a user to be called using an assigned URI instead of a phone number
• URIs follow a user@domain format that is similar to an email address
• URI dialing is enabled through configuration in the client and Cisco Unified Communications Manager
© 2014-2015 Elcore | Elko.by. All rights reserved. 53
Selection Calling Device in Jabber
Call Forward Indictor
© 2014-2015 Elcore | Elko.by. All rights reserved. 54
History and Voicemail Actions
Outgoing Call
Received Call
Missed Call
© 2014-2015 Elcore | Elko.by. All rights reserved. 55
Режимы работы Jabber (Operating Modes)
Desk phone Control (Audio или Video) – расширение телефона
• Cisco Jabber for windows registers to Cisco UC Manager using CTI
• Display of video on desktop when using a PC tethered to the user desk phone
Soft phone (обычный программный телефон)
• Cisco Jabber registers to Cisco UC Manager as a Client Services framework device (CSF) using SIP
Extend & Connect – расширение и управление сторонними телефонами
• Display of video on desktop when using a PC tethered to the user desk phone
© 2014-2015 Elcore | Elko.by. All rights reserved. 56
Conferencing
• If video not being used contact card picture shown in voice only call
• Video shown as default within integrated session window
© 2014-2015 Elcore | Elko.by. All rights reserved. 57
Hunt Group
• Hunt Groups позволяет incoming calls перенаправляться на группу пользователей
• New tab to access Hunt Group Log in/Out checkbox
• Tab also used for Call Pickup and Group Pickup feature
Logged into Hunt Groups
Not logged into Hunt Groups
© 2014-2015 Elcore | Elko.by. All rights reserved. 58
Call Pickup / Group Pickup / Directed Call Pickup
• Call Pickup позволяет перехватывать incoming calls в своей группе
• Directed Call Pickup позволяет перехватывать incoming calls в другой группе (неассоциированной с пользователем)
• Group Pickup позволяет перехватывать incoming calls в другой группе (предварительно ассоциированной с пользователем)
© 2014-2015 Elcore | Elko.by. All rights reserved. 59
Интеграция с WebEx Meeting
WebEx
Escalation
© 2014-2015 Elcore | Elko.by. All rights reserved. 60
Calendar Integration Choice
• MS Outlook
• IBM Lotus Notes
NOTE: Client must be
restarted for any changes
to take effect
Интеграция с календарями почтовых систем
© 2014-2015 Elcore | Elko.by. All rights reserved. 61
Microsoft Office Integration
• Cisco Jabber can be integrated with Microsoft Office to give features such as –
- See a user's availability
- Click to initiate communications such as Chat, voice or video calls, or multiparty
conferences from Microsoft office
• Cisco Jabber can be integrated with
- Office 2007/2010/2013
- Office 365 and Share Point
© 2014-2015 Elcore | Elko.by. All rights reserved. 62
Contact Card Integration
Cisco Jabber for Windows uses published Microsoft Office APIs to provide Cisco communications tasks directly from Office applications
Chat / IM Launch Jabber chat
sessions directly from
Office Contact Card
Voice/Video Launch Jabber high definition
video calls directly from Office
Contact Card
Presence Instantly view the
availability of
your contacts
Presence is provide
from Cisco on
premise or cloud
presence service
Microsoft Office 2007/2010/2013 Integration
© 2014-2015 Elcore | Elko.by. All rights reserved. 63
Лицензирование Jabber
Обобщенный функционал
Полезные ссылки
© 2014-2015 Elcore | Elko.by. All rights reserved. 64
Лицензирование Jabber
Для IM&P and UC
JAB-ADR-CLNT-UWL Jabber for Android CUWL Only + phone lic # пользователей
JAB-IPH-CLNT-UWL Jabber for iPhone CUWL Only + phone lic # пользователей
JABBER-DESKTOP Jabber for Desktop for PC and Mac + phone lic # пользователей
JABBER-TABLET Jabber for iPad and Android Tablet + phone lic # пользователей
JABBER-SDK Jabber Software Development Kit 1 lic
Для IM&P только
JABBER-IM-ADDON Jabber for Everyone Additional IM Users # пользователей
Для Jabber Guest
EXPWY-VE-C-K9 Cisco Expressway-C Server, Virtual Edition 1 lic
EXPWY-VE-E-K9 Cisco Expressway-E Server, Virtual Edition 1 lic
SW-EXP-8.X-K9 Software Image for Expressway with Encryption, Version X8 1 lic
LIC-EXP-RMS Expressway Rich Media Session 1 сессия = 2 lic
JABBER-GUEST Jabber Guest Session # одновр. подкл.
TOP P/N
Через CUWL Через UCL Через BE6K
R-CUWL-STD-K9; CUWL-STD-K9; CUWL-PRO-K9 R-UCL-UCM-LIC-K9; UCL-UCM-LIC-K9 R-CBE6K-K9
© 2014-2015 Elcore | Elko.by. All rights reserved. 65
© 2014-2015 Elcore | Elko.by. All rights reserved. 66
Полезные ресурсы
• Cisco Jabber 11.0 Planning Guide http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/jabber/11_0/CJAB_BK_C
04C09E7_00_cisco-jabber-110-planning-guide.html
• Cisco Jabber 11.0 Deployment and Installation Guide http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/jabber/11_0/CJAB_BK_D
657A25F_00_deployment-installation-guide-jabber-110.html
© 2014-2015 Elcore | Elko.by. All rights reserved. 68
© 2014-2015 Elcore | Elko.by. All rights reserved. 69
© 2014-2015 Elcore | Elko.by. All rights reserved. 70
© 2014-2015 Elcore | Elko.by. All rights reserved. 71
© 2014-2015 Elcore | Elko.by. All rights reserved. 72