6 chat room, Chat room – CounterPath Bria 4 Configuration Guide - Enterprise Deployments User Manual

Bria 4 Configuration Guide – Enterprise Deployments

5

Setting up for Security outside of Bria

When using TLS, the user must have the root certificate that signs the proxy’s chain of certificates. In most
cases, the root certificate will already be installed. Procedures for exchange of certificates are outside the scope
of this documentation. The certificates must be stored on the Bria computer, in the root certificate store.

Setting up the root certificate on the Bria user’s computer ensures that the connection to the proxy is TLS secure
(the first hop). Any proxy in the chain (between the user and the other party) that does not support TLS may
cause an insecure link in the chain. Therefore, if the other party is outside your domain, you cannot be
completely sure that the call is secured at the signaling level, which means that you cannot be sure that it is
secured at the media level.

When a call with both signaling and media encryption is established, Bria displays the encryption icon. This
icon indicates that the call is secure between each caller and their proxy (the first and last hops); the call may or
may not be secure for other hops.

Encryption Options Supported by Bria

You must set up each account to enable or disable call encryption.

Configuring for these Encryption Options

•

To support encrypted calls, set proxies:proxyn:transport to TLS and set
proxies:proxyn:security_outgoing_srtp to true.

•

To support only unencrypted calls, set proxies:proxyn:transport to Auto, UDP or TCP and set
proxies:proxyn:security_outgoing_srtp to false.

2.6 Chat Room

If you support XMPP accounts, you can set up persistent chat rooms on your XMPP server. Users with accounts
on that XMPP server can then join any chat room (View > Chat Rooms).

Chat rooms are set up to allow the same group of people to have a group IM session, usually on a regular basis.
Note that the chat room feature is not the same as group chat: chat rooms involve persistent groups, while the
group chats are created on the fly by the user.

Bria supports the following features:

•

Open chat rooms: users can join without being already set up as a member of the group.

•

Members-only chat rooms: users can join only if already set up as a member.

•

Password-protected (confidential) chat rooms: users must enter the password to join.

On your XMPP server, create the chat room. Add members if desired and if supported by your XMPP server.
Assign passwords if desired and if supported by your XMPP server.

Option

How Outgoing Calls are Handled

How Incoming Calls Are Handled

Make and accept
only encrypted
calls

Bria will place all calls with TLS. The call
invite will specify SRTP media encryption.
If the correct certificates are not in place or if
the other party does not accept encrypted calls,
the call will fail.

Bria will only accept INVITEs that are for encrypted calls.
If Bria receives a call INVITE that is not encrypted, the call
will be rejected.

Do not allow
encrypted call

Bria will place only unencrypted calls.
If the other party does not accept unencrypted
calls, the call will fail.

Bria will only accept INVITEs that are for unencrypted calls.
If Bria receives a call invite that is encrypted, the call will be
rejected.