Which statement describes the key security service that is provided by the TLS Proxy function on
a Cisco ASA appliance?
A.
It provides interworking to ensure that external IP phone traffic is encrypted, even if the rest of
the system is unencrypted.
B.
It only applies to encrypted voice calls where both parties utilize encryption.
C.
It manipulates the call signaling to ensure that all media is routed via the adaptive security
appliance.
D.
It enables internal phones to communicate with external phones without encryption.
E.
It protects Cisco Unified Communications Manager from rogue soft clients and attackers on the
data VLAN.
Explanation:
TLS Proxy is typically deployed in front of Cisco Unified Communications Manager and other
unified communications application servers that utilize media encryption. TLS Proxy is not
designed to provide remote-access encryption services for remote phones or client endpoints.
Other solutions such as Cisco ASA Phone Proxy or IP Security/Secure Sockets Layer (IPsec/SSL)
VPN services are more appropriate. TLS Proxy is not designed to provide a secure campus soft
phone solution where the requirement is to provide secure data to phone VLAN traversal or for
proxying connections to Cisco Unified Communications Manager.