The following prerequisites must be completed for the provisioning of BYoPSTN. The prerequisites given below assume that the Partner has a working Webex for Cisco BroadWorks deployment that includes:

• Functioning BroadWorks System – as documented in the Webex for Cisco BroadWorks Solution Guide

• BroadWorks AS license with “VoiceXML” service in sufficient quantity (1 per PSTN number)

• BroadWorks patches required:

  For R22:

  • AP.xsp.22.0.1123.ap376935

  • AP.as.22.0.1123.ap376935

  For R23:

  • AP.xsp.23.0.1075.ap376935

  • AP.as.23.0.1075.ap376935

  For R24

  • AP.as.24.0.944.ap376935

• Cisco CUBE System deployed (IOS Version 16.12.2 or higher): https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/voice/cube/configuration/cube-book.html

  Both hardware-based and virtual CUBE is supported. Hardware based CUBE is recommended for scalability and handling larger numbers of calls.

• Webex Partner organization – as outlined in the Webex for Cisco BroadWorks Solution Guide

The procedure the Cisco Partner uses to add their Webex meeting call-in phone numbers is as follows:

1. Log in to Cisco Partner Hub.

2. Go to Settings.

3. Scroll to BroadWorks Calling.

4. Under Meeting Join configuration (BYoPSTN), select Create Call-in Phone Number Group.

5. Enter the Phone Number Group name and select Next.

6. Enter the Phone Number details and select Next.

7. Review the Phone Number Group details summary and select Save.

8. Repeat this procedure for each Phone Number Group to be added.

The screenshots below illustrate the procedure.

This step is to be completed only if you want to deploy the Meeting Join via Callback option. Otherwise, you can skip this step.

If you do not configure this option, users can use the Call-in option to join meetings, or they can join with computer audio.

When you use the Meeting Callback option, a Callback DNS SRV Group is required to route calls from Webex to CUBE. The procedure the Cisco Partner uses to add their CUBE DNS SRV records to Webex is as follows:

1. Log in to Partner Hub.

2. Go to Settings.

3. Scroll to BroadWorks Calling.

4. Under Meeting Join configuration (BYoPSTN), select Create callback DNS SRV Group.

5. Enter the Callback DNS SRV Group name.

6. Select Next.

7. Enter the Callback DNS SRV details.

8. Select Next.

9. Review the Callback DNS SRV details summary.

10. Select Save.

11. Provision any updates to DNS to reflect the new records in the DNS SRV group.

12. Repeat this procedure for each Callback DNS SRV Group to be added.

The screenshots below illustrate the procedure.

Initial configuration and verification of the BYoPSTN solution requires a seed organization for each unique combination of Phone Number Group and Callback DNS SRV Group (if callback is required). Therefore, it is recommended that Cisco Partners similarly create a new Customer Template for each unique combination of Phone Number Group and Callback DNS SRV Group. Each customer template should be used to generate a corresponding seed organization.

Once the BYoPSTN configuration is seeded and verified using the seed organizations, the Phone Number Groups and Callback DNS SRV Groups can be applied to existing Customer Templates as required.

Please note that newly created Customer Templates are not in use by existing non-test customers and therefore can safely be used for manual verification of the BYoPSTN configuration.

If you are not deploying Meeting Join via Callback, you do not need to associate Callback DNS SRV Groups to the Customer Template. However, you do need to select Disable Callback.

To add to a new Customer Template, do the following:

1. Log in to Cisco Partner Hub.

2. Go to Settings.

3. Scroll to BroadWorks Calling.

4. Under Templates, select Add Template.

5. Enter the Template details. At the Package Type stage:

   • Select Package Type as Standard.

   • Select Meeting join configuration as Partner provided call-in numbers (BYoPSTN).

   • Select a provisioned Phone Number group.

   • For Callback DNS SRV group, if you want to enable the Meeting Callback option then select a provisioned Callback DNS SRV group. Otherwise, select Disable Callback.

6. Select Next.

7. Enter the remaining Template details.

8. Review the Template details summary.

9. Click Save.

10. Repeat this procedure for each Customer Template that must be added

The screenshot below illustrates the procedure.

To update an existing Customer Template, do the following:

1. Log in to Cisco Partner Hub.

2. Go to Settings.

3. Scroll to BroadWorks Calling section.

4. Under Templates, select View Template.

5. Select the Template to be updated.

6. Scroll to the Meeting join configuration section:

   • Select Partner provided call-in numbers (BYoPSTN).

   • Select a previously configured Phone Number group.

   • For Callback DNS SRV group, if you want to enable the Meeting Callback option, select a provisioned Callback DNS SRV group. Otherwise, select Disable Callback.

7. Select Save.

   The screenshot below illustrates the procedure.

The BYoPSTN solution has several different components, each of which must be configured correctly for the solution to operate successfully. One of the two purposes of the seed solution organizations is to generate phone number to meeting access codes mappings and a meeting site universally unique identifier (site UUID) that are required for the on-going operation of the solution. The other purpose being configuration verification.

For each unique combination of Phone Number Group and Callback DNS SRV Group to be used, a corresponding Customer Template should be created previously. For each of these Customer Templates, a seed solution organization must be provisioned. The provisioning of these seed organizations generates the phone number to meeting access codes mappings and a meeting site UUID that are required to configure BroadWorks.

Using each of the previously configured Customer Templates, provision a subscriber for a new test BroadWorks Service Provider or new BroadWorks Enterprise with a Standard package user. The resulting Standard package meeting site should be using Partner Provider call-in numbers meeting join option. Either of the following methods can be used to provision the subscriber:

1. Provision the test subscriber using BroadWorks Subscribers APIs as documented on developer.webex.com.

2. Enable the test subscriber for the IM&P Service on a BroadWorks configured to use the Customer Template. Please ensure the Customer Template is using the Standard package as the default to ensure the test subscriber is assigned a Standard package. Alternatively, the test subscriber must be subsequently updated to have the Standard package.

Please note it is recommended that the seed solution organizations are associated with a test BroadWorks Service Provider or test BroadWorks Enterprise.

It is critical that this meeting site remains provisioned as this site UUID is sent in each call-in meeting join request as an authentication token. You should not delete the seed organization as the associated meeting site will also be deleted. If the seed organization is removed, you will need to provision a new one and reconfigure Broadworks with the new site UUID.

The primary and any secondary seed solution organizations can be deleted, if desired prior to the set of phone numbers and callback DNS SRV records being assigned to non-test customers. When the set of phone numbers and callback DNS SRV records are assigned to any non-test customers, those phone numbers and callback records are associated with meeting sites for those customers and are in use for meeting join using call-in and callback. Any changes should be considered as service impacting.

To select the Primary Seed Solution Organization, do the following:

1. Log in to Cisco Partner Hub.

2. Go to Settings.

3. Scroll to BroadWorks Calling section.

4. Under Configuration Validation (BYoPSTN) section, select Assign.

5. In the Assign organization screen, search for and select one of the seed organizations previously configured

6. Select Assign.

   The selected seed organization is the primary seed organization.

The screenshots below illustrate the procedure.

The Primary Seed Solution Organization, Phone Number Groups and Callback DNS SRV Group details for a given BroadWorks Cluster are available in a single location, the BroadWorks configuration (BYoPSTN) JSON file. This information is needed to configure BroadWorks for BYoPSTN.

Please note the JSON configuration file is only available for view/download after the primary seed solution organization is selected.

The procedure to view/download the JSON configuration file is as follows:

1. Log in to Cisco Partner Hub.

2. Go to Settings.

3. Scroll to BroadWorks Calling.

4. Under Clusters, select View Cluster.

5. Select the Cluster that is associated with the Customer Templates that are configured for BYoPSTN.

6. Scroll to the BroadWorks configuration for BYoPSTN section.

7. Click Download JSON configuration file.

8. Repeat this procedure for any other BroadWorks Clusters.

The screenshots below illustrate the procedure.

Please see the sample JSON configuration file below. The file contains supplementary information on each Phone Number Group, Callback DNS SRV Group, the following key configuration items which must be entered on BroadWorks are marked in bold.

• siteUUID: BroadWorks must send this value in the SIP messages, it is a token which Webex Edge Audio uses to confirm the identity of the Cisco Partner’s BroadWorks and its access to meeting sites managed by this Cisco Partner.

• Phone number -to- access code mapping: The phone numbers and their associated Webex access codes must be configured on BroadWorks.

  • phoneNumber

  • accessCode

• localeTag: The desired announcement language associated with phone number must be configured on BroadWorks.

• dnsSrv: The Callback DNS SRV must be configured in the DNS and refer to the desired CUBE instances.

{
   "siteUUID": "491db0821791441a96c233fefb6c6dfc",
   "siteURL": " seedtestenterpriseabc.webex.com ",
   "partnerOrgId": "1da175de-3651-4467-b26b-b0d85a2cb3ad",
   "solutionValidationOrgId": "d927ac4d-3d73-4d7f-8506-a1bc0a221934",
   "customerTemplates": [
      {
         "name": "US West Std",
         "id": "27fe1337-ab1d-44b0-8b5e-ff1d32f6e3f8",
         "phoneNumberGroupId": "1bcb05bd-b919-45fd-b30e-71d2abb59e26",
         "callbackDnsSrvGroupId": "25392686-a390-49b9-bad5-cb47159c3e992"
      },
      {
         "name": "US East Std",
         "id": "070d6682-b64f-46ea-bc4b-b2e1218ba4bb",
         "phoneNumberGroupId": "12bc0b8f-ea1d-457f-8fe2-069ccf78907e",
         "callbackDnsSrvGroupId": "25392686-a390-49b9-bad5-cb47159c3e992"
      }
   ],
   "phoneNumberGroups": [
   {
         "name": "US West",
         "id": "1bcb05bd-b919-45fd-b30e-71d2abb59e26",
         "phonenumbers": [
            {
               "id": "617c5faa-1721-45c7-bc70-e6d7c20ccc29",
               "name": "US Palo Alto",
               "countryCode": "US",
               "localeTag": "en_US",
               "tollType": "TollFree",
               "defaultPhoneNumberType": "NONE",
               "phoneNumber": "9863502478",
               "accessCode": "88672693772924908359"
            },
            {
               "id": "48fa7c50-9da0-4c8b-9b2f-307ff435c7c7",
               "name": "US Toll San Francisco",
               "countryCode": "US",
               "localeTag": "en_US",
               "tollType": "Toll",
               "defaultPhoneNumberType": "PRIMARY",
               "phoneNumber": "4156551000",
               "accessCode": "88652789466280320324"
            }
         ]
      },
      {
         "name": "US East",
         "id": "12bc0b8f-ea1d-457f-8fe2-069ccf78907e",
         "phonenumbers": [
            {
               "id": "ca0c622a-8621-4477-91e0-b3e214833568",
               "name": "US Maryland",
               "countryCode": "US",
               "localeTag": "en_US",
               "tollType": "Toll",
               "defaultPhoneNumberType": "PRIMARY",
               "phoneNumber": "2403332200",
               "accessCode": "88631321777971704941"
            },
            {
               "id": "00875574-9a46-4447-a967-350b6176755a",
               "name": "US Florida",
               "countryCode": "US",
               "localeTag": "en_US",
               "tollType": "Toll",
               "defaultPhoneNumberType": "SECONDARY",
               "phoneNumber": "9049002303",
               "accessCode": "88632627551145646175"
            },
            {
               "id": "a2c10316-9266-4423-a669-d67949f99d33",
               "name": "US New York",
               "countryCode": "US",
               "localeTag": "en_US",
               "tollType": "TollFree",
               "defaultPhoneNumberType": "NONE",
               "phoneNumber": "8056504578",
               "accessCode": "88649679020033567943"
            }
         ]
      }
   ],
   "callbackDnsSrvGroups": [
      {
         "name": "CB US",
         "callbackDnsSrvs": [
            {
               "name": "Callback US",
               "countryCode": "US",
               "dnsSrv": "cube.us.example.com",
               "id": "c5209d17-7c2f-45b3-95a6-65d7f5f53c7e"
            }
         ],
         "id": "25392686-a390-49b9-bad5-cb47159c3e992"
      },
      {
         "name": "CB MX",
         "callbackDnsSrvs": [
            {
               "name": "Callback MX",
               "countryCode": "MX",
               "dnsSrv": "cube.mx.example.com",
               "id": "cca0e4c3-5cff-412c-a854-bfb719f603a2"
            }
         ],
         "id": "36403797-b401-50c0-cbe5-dc58260d4f003"
      }
   ]
}

The Webex Edge Audio DNS SRV domain must be configured on BroadWorks. Use the following procedure to determine the value.

1. Log in to Cisco Partner Hub.

2. Go to Customers.

3. Select the BYoPSTN Validation Enterprise.

4. Select View Customer.

5. Go to Services/Meetings.

6. Select the Standard package meeting site.

7. Scroll to the bottom of the side-out panel, select Configure Site.

8. Select Common Settings / Audio Settings.

9. Under the Edge Audio Custom Global Call-in Numbers section, select Generate Lua Script.

10. In the pop-up window search for value “-- Update To header with CCAX URL”.

     
    -- Update To header with CCAX URL
     local oldTo1 = msg:getHeader("To")
     local newTo1 = string.gsub(oldTo1, "<sip:(.+)@(.*)>", "<sip:%1@ecccx.amer.webex.com>")
     msg:modifyHeader("To", newTo1)
    

11. Extract out the value in bold, for example, ecccx.amer.webex.com.

This is the Webex Edge Audio DNS SRV domain that must configured on BroadWorks.

This section describes the BroadWorks configuration necessary to implement the Meeting Call-in and Callback scenarios shown in the diagrams below. The configuration examples are based on the data in the JSON file shown in the previous section. Numbers, domains, naming of enterprise/groups, type of devices, policies, profiles, etc. are expected to vary by partner.

Call flow:

1. User requests call back, Webex initiates a call back.
2. Call is routed to BroadWorks OTT.
3. Call reaches the CUBE provisioned in CH. CUBE routes the call to BroadWorks.
4. BroadWorks identifies the call as Meeting Host origination and creates a session for the meeting host user and processes the call.
5. The meeting host user session processes the call and translates the dialed number. Additionally, a billing record is generated on behalf of the meeting host user.
6. BroadWorks routes the call either to the user associated to the device (7) or to PSTN (8).

Before You Begin

SIP communication between BroadWorks and the CUBE can be over UDP or TCP depending on your network requirements. For example, if some network or access devices (for example, gateways or endpoints) in the BYoPSTN call-in or callback flows do not support TCP, then UDP should be used instead.

The configuration and examples shown in this guide use TCP as the transport protocol. To use TCP, make sure that your BroadWorks Application Server and Network Server are both configured for TCP:

_CLI/Interface/SIP> get
networkProxyTransport = unspecified
accessProxyTransport = unspecified
supportDnsSrv = true
supportTcp = true

Application Server

Identify/Device Profile Type

A new Identity/Device Profile Type should be created to represent the CUBE. Make sure to set the following properties below, while others can be left at default values:

• Signaling Address Type—Set to Intelligent Proxy Addressing

• Authentication—Set to Enabled

• Support Identity in UPDATE and Re-INVITE—Checked

• Static Registration Capable—Set to Enabled

• Video Capable—Set to Disabled

In the example below, the new Identity/Device Profile Type “VXML_profile” is created to represent the CUBE.

Voice XML Virtual Subscriber

Create a VoiceXML Instance

Each Webex Meetings PSTN number is represented by a virtual subscriber in BroadWorks, and the VoiceXML virtual subscriber functionality can be used. It is recommended that a dedicated enterprise and group are used for all VoiceXML virtual subscribers. Note that we are not actually exploiting any VoiceXML capabilities, but this type of virtual user is suitable for interacting with the CUBE.

In order to use the VoiceXML service, ensure that the license has sufficient “VoiceXML” quantities and that the service is authorized on the enterprise and group levels, and the VoiceXML service is assigned to the group as shown in the example picture below.

Under Group > Services, select VoiceXML and create an instance for each PSTN number.

Configure VoiceXML Addresses

For each VoiceXML instance, provision the following under the VoiceXML Addresses:

• Phone Number—Enter the dial-in number for the Webex Meetings site (for example, 2403332200).

• Extension

• Identity/Device Profile—Create one instance (for example, VXML_deviceProf) based on the device type created in the previous section (VXML_profile in the example) and enter the following configuration.

• Line/port—Enter in the <access number>@<domain> format, where

  • <access number> is the Access Code number for the Webex Meetings site (available from the JSON file) (for example, 88631321777971704941)

  • <domain> is the domain of the Webex Edge Audio for this meeting site (for example, ecccspx.amer.pub.webex.com)

• Contact sip—For Meeting Call-In calls to the access number, the INVITE will be sent with a Request URI set to the value of this field. Enter the SIP contact in this format <sip contact>;<Locale>;<Meetings Site UUID>;<SIP transport>, where:

  • <sip contact> is the <number> from the line/port field but with the domain as the SRV that resolves to the CUBE’s address (for example, 88631321777971704941@cube.internal.local)

  • <Locale> represents the language setting according to the user locale (for example, locale=en_US)

  • <Meetings Site UUID> is site UUID from the JSON file (for example, x-cisco-site-uuid=abbd70f6c519fb1ee053ad06fc0a038b)

  • <SIP transport> should be transport=tcp to have the AS use TCP to send messages to the CUBE.

Below is an example of VoiceXML Addresses settings.

For each additional Meeting access number to be used, an additional VoiceXML virtual subscriber should be created analogous to the one above. The same device profile can be used, but the Line Port and Contact fields must be constructed from the access number information as shown above.

Make sure to verify that the Call Processing Policy limits that you configure on the BroadWorks virtual subscriber are sufficient to handle the extra BYoPSTN calls in your Phone Number Group.

Assign SIP Authentication to VoiceXML Instance

Assign the Authentication service to the VoiceXML virtual subscriber. This will be used to authenticate SIP INVITE messages from the CUBE in the Callback scenario. It also prevents the VoiceXML virtual subscriber from accepting calls from parties other than the CUBE

Go to the virtual subscriber Authentication page under Utilities and enter the SIP username and password as shown below:

The CUBE must be configured with the same username and password in order to properly authenticate the INVITE messages that are sent to the AS. An example of the command to configure SIP authentication on the CUBE is as follows: sip-ua authentication username VSUB password 0 <unencrypted password> (See the CUBE onfiguration/datafill for more details).

Namedefs file

The VoiceXML virtual subscriber SIP contact field contains the URL where the domain part resolves to the CUBE address. This is an internal SRV, and the namedefs file on the AS can be used to resolve the internal SRV to the CUBE IP.

In our example, the SIP contact SRV is cube.internal.local and resolves to address 10.165.196.30 port 5060 to reach the CUBE. On the AS, the /usr/local/broadworks/bw_base/conf/namedefs file is updated as follows:

_sip.tcp.cube.internal.local SRV 1 99 5060 10.165.196.30

Webex Meetings Call Type

Webex Meetings call processing configuration options are available to control how Meeting Call-In calls are handled. By default, Meeting Call-In calls are processed as external calls as Call-In numbers are hosted in a dedicated enterprise or service provider. External calls are normally included in the Session Admission Control session counts and flagged for charging in the CDR field chargeIndicator.

The following example adds the recommended configuration to process Meeting Call-Ins as internal calls such that they are excluded from charging and excluded from the Session Admission Control counts.

By setting Enforce NS Charge Field to true, the population of CDR field chargeIndicator is based on the configured Charge attribute of the Network Server call type.

AS_CLI/System/CallP/WebexMeetings/WebexCallTypes> add "Webex Meetings" WXM true true

AS_CLI/System/CallP/WebexMeetings/WebexCallTypes> get
      Name    NS Call Type    Enforce NS Charge Field  Process As Internal For SAC-Subscriber
  ==========================================================================================
  Webex Meetings       WXM               true                                true

VoiceXML Meeting Callback Virtual Subscriber

Create a VoiceXML Meeting Callback Subscriber

A dedicated VoiceXML virtual subscriber with a special Webex Meeting Callback option (hereafter called VoiceXML meeting callback subscriber) needs to be configured on the BroadWorks Application Server (AS) to handle the Webex Meetings callback calls. Only a single instance of this subscriber can be configured on the AS.

To enable the feature, set the Activatable Feature 102074 to true via CLI.

AS_CLI/System/ActivatableFeature> activate 102074
***** Warning *****:
This activity should only be done during a maintenance window because
this may cause large amounts of data to be added/modified/deleted and
it may take some time to execute. Features that have web page impacts
require that users and administrators log out and log back in.
Are you sure you want to continue?

Please confirm (Yes, Y, No, N): y
...Done

AS_CLI/System/ActivatableFeature> get

      Id                                               Description  Activated  Last Modified Timestamp
=============================================================================================
  102746                            BroadWorks Support for CI UUID       true
  102074          BYO PSTN Billing support for CallBack and CallIn       true      
  104256                          Weak Password Validation Service      false
  104073  Add FAC Support for Call Center Agent Join-Unjoin in CDR      false
  103542   Configurable Endpoint For Auto-Answer And Forced Answer      false
  104255    Control password usage and behavior to ensure security      false

Since "BYO PSTN Billing support for CallBack and CallIn" feature depends on "BroadWorks Support for CI UUID" feature, before activating (102074) feature you also need to activate (102746) feature. For more details refer "CI User UUID Sync (Broadworks Support for CI UUID)" section.

The VoiceXML meeting callback subscriber is similar to the existing BYOPSTN VXML virtual subscriber but tagged it with a new “Webex Meeting Callback” flag. This VoiceXML meeting callback subscriber is configured with the same device profile as the existing BYOPSTN VXML virtual subscriber, as well as the Authentication service with the same credentials.

An example is shown below:

The VoiceXML meeting callback subscriber must exist on the AS hosting the meeting host user. When the AS receives the meeting callback INVITE request, it attempts to locate both the VoiceXML meeting callback user and the meeting host user on the AS during call setup. If neither of these users are found, the call is rejected.

Meeting Host Session

In the callback scenario with the X-Cisco-Meet-Info header, the Cisco BroadWorks Application Server receives a SIP INVITE request and identifies the meeting host user using the host CI User UUID parameter of the SIP X-Cisco-Meet-Info header. A call session is created on behalf of the meeting host user is created to process the call and execute the service profile of the user. Additionally, a billing record is generated on behalf of the meeting host user. The meeting ID and the site UUID information from the SIP X-Cisco-Meet-Info header are captured in the billing record.

An example of the SIP X-Cisco-Meet-Info header is shown below:

X-Cisco-Meet-Info:hostCIUserUuid="52f4c6cb-c6a3-4283-a1ab
-04cc8828b7c1";meetingid="26551128462";siteUUID="ec6659987f473332e0531b04fc0acaec

Application Delivery Platform

CI User UUID Sync (Broadworks Support for CI UUID)

The user CI UUID is a unique identifier to identify users within the Webex environment.

This Webex Provisioning Sync application on the Cisco BroadWorks Application Delivery Platform (ADP) is used to synchronize, map, and store the user CI UUID into the BroadWorks infrastructure such that it can be used in various interactions with Webex and Webex for BroadWorks service.

Refer to the “Enable Webex Meeting Callback” on how the CI User UUID association is used by the Cisco BroadWorks Network Server and Cisco BroadWorks Application Server.

The following steps set up the Webex Provisioning Sync application to periodically poll and update the BroadWork Users with the CI UUID.

The Webex Provisioning Sync Application requires OAuth credentials with the spark-admin:broadworks_subscribers_read scope for the Cisco Identity Provider and can be obtained by raising a service request with your onboarding agent.

Check ‘Obtaining OAuth credentials for your Webex for Cisco BroadWorks’ section for more details to raise the service request at: https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cloudCollaboration/wx4bwks/Solution_Guide/wbxbw_b_solution-guide/wbxbw_b_SolutionGuide-PDF_chapter_01.html?bookSearch=true#Cisco_Generic_Topic.dita_0e1beabc-80ae-4e8d-b177-17108ec5daed

Add the token with an appropriate partner name as follows:

ADP_CLI/System/CommunicationUtility/DefaultSettings/ExternalAuthentication/CiscoIdentityProvider/Partners> add custBYO refreshToken
      New Password:
      Re-type New Password:
      ADP_CLI/System/CommunicationUtility/DefaultSettings/ExternalAuthentication/CiscoIdentityProvider/Partners> get
       Partner Name  Refresh Token
==================================
  FederationPartner       ********
           custPart       ********
            custBYO       ********

Add the partner name associated with the OAuth token to the list of partners to be monitored by the Webex Provisioning Sync application with the ‘enabled’ flag set to ‘true’.

By this Webex Provisioning Sync application will start doing CI user UUID syncing on defined polling interval.

ADP_CLI/Applications/WebexProvisioningSync/GeneralSettings/MonitoredPartners> add custBYO true

Once the partner is included, the Webex Provisioning Sync application can now perform the association of the CI UUID to the BroadWorks users.

Change the connection timeout using the following commands:

ADP_CLI/Applications/WebexProvisioningSync/GeneralSettings/Controller> set requestTimeout 30000
...Done

ADP_CLI/Applications/WebexProvisioningSync/GeneralSettings/Controller> get
requestTimeout = 30000

ADP_CLI/Applications/WebexProvisioningSync/GeneralSettings/Controller> cd http

ADP_CLI/Applications/WebexProvisioningSync/GeneralSettings/Controller/Http> set connectionTimeout 300
*** Warning: BroadWorks needs to be restarted for the changes to take effect ***

ADP_CLI/Application/WebexProvisioningSync/GeneralSetting/Controller/HTTP > get
connectionPoolSize = 5
connectionTimeout = 300
connectionIdleTimeOut = 300
maxConcurrentRequests = 10
maxCookieAgeInHours = 24

This association can be done automatically or manually. The CLI manualSync command can instantly trigger the association to take place.

ADP_CLI/Applications/WebexProvisioningSync/GeneralSettings/MonitoredPartners> manualSync custBYO

Partners with ‘Enabled’ set to ‘true’ perform the associated on the polling interval. During the initial association, the Webex Provisioning Sync application queries the Webex Subscriber API to retrieve the data containing the CI UUID for all users hosted by the partner. The BroadWorks user’s External ID is updated with the associated CI UUID. Subsequent associations affect users added to the partner. The status command can be used to see if the synchronization is complete.

ADP_CLI/Applications/WebexProvisioningSync/GeneralSettings/MonitoredPartners> status
  Partner Name         Status                 Last Sync Time
============================================================
       custBYO  synchronizing
      custPart     monitoring  2023-01-29T15:36:43.873-05:00
2 entries found.

Once the synchronization is complete, the status changes back to monitoring. Subsequent synchronization is performed on users added to the partner after the “Last Sync time”.

The following figure shows the CI UUID set within the External ID:

Network Server

Call Type

For billing and reporting purposes, it may be desirable to mark CDRs for Meetings Call-In calls. This can be accomplished using the Network Server PreCallTyping policy.

First, on the NS CLI under /System/CallP/CallType, add a new call type. The following example adds the new “WXM” call type:

NS_CLI/System/CallP/CallTypes> add WXM LOCAL true false "Webex Meetings"
NS_CLI/System/CallP/CallTypes> get calltype WXM    
  CallType     Description  Category         Scope  SupportE164  Charge      
=======================================================================    
  WXM          Webex Meetings  LOCAL  User Defined         true   false

The call type can then be used in a PreCallTyping instance that is part of the BroadWorks user’s routing profile. In this example, a new PreCallTyping instance “wxm” was added under /Policy/PreCallTyping CLI context, but it could be an existing PreCallTyping instance already being used:

NS_CLI/Policy/PreCallTyping> add wxm true CallTypes ALL

NS_CLI/Policy/PreCallTyping> get wxm                        
Policy: PreCallTyping  Instance: wxm                        
  CallTypes:                                
    Selection = {ALL}                                
    From = {PCS, ALL, TRMT, LO, GNT, DP, WXM, LPS, OA, TPS, EA, FGB, POA, SV, SVCD, IN, MS, CSV, EM, SVCO, SMC, ZD, NIL, CT, TF, GAN, TO, DA, OAP}        
  supportLCABasedNormalization = false                        
  Enable = true 

The next step is to add entries to the PreCallTyping instance for all the dial in numbers under the /Policy/PreCallTyping/DialPlan CLI context. For example:

NS_CLI/Policy/PreCallTyping/DialPlan> add wxm 1 dflt 12403332200 12403332200 exact 11 11 WXM 0 0 Webex Meetings
NS_CLI/Policy/PreCallTyping/DialPlan> add wxm 1 dflt_e164 12403332200 12403332200 exact 11 11 WXM 0 0 Webex Meetings

NS_CLI/Policy/PreCallTyping/DialPlan> get wxm 1                
Policy: PreCallTyping  Instance: wxm  Table: DialPlan                
CC Dial Plan   From     To          Match Min Max Call Type Prefix Action  Call Ind  Description                  
================================================================================================
1 dflt      12403332200 12403332200 {exact} 11 11 {WXM}     0                      Webex Weetings
1 dflt_e164 12403332200 12403332200 {exact} 11 11 {WXM}     0                      Webex Meetings

The PreCallTyping instance is then added (provided it doesn’t already exist) to the applicable routing profile of the originating user as shown in the example below:

NS_CLI/Policy/Profile> add Profall PreCallTyping wxm
NS_CLI/Policy/Profile> get profile Profall
Profile:  Profall
                 Policy              Instance
   ==========================================
             CallTyping           DefaultInst
          CallScreening           DefaultInst
            SubLocation           DefaultInst
              FarEndRtg           DefaultInst
             NearEndRtg           DefaultInst
             UrlDialing           DefaultInst
            MediaSrvSel           DefaultInst
                 SIMPLE           DefaultInst
              DstSvcRtg           DefaultInst
      NumberPortability           DefaultInst
             RCBasedRtg           DefaultInst
      NetVoicePortalRtg           DefaultInst
          PreCallTyping                   wxm    

BroadWorks originating CDR’s are only generated by calls originated from BW subscribers. PSTN originated calls from the “network” side of the AS will not generate originating CDR’s. There will be a terminating CDR for the VoiceXML virtual subscriber in either case.

RoutingNE

A RoutingNE is required on the NS under /System/Device/RoutingNE CLI context to represent the CUBE. This way, when the NS receives the INVITE from the CUBE, it will match the via header to the RoutingNE entry that is provisioned on the NS. Refer to the Cisco BroadWorks Network Server Command Line Interface Administration Guide for details on how to add a RoutingNE.

Below is an example of the commands to add the RoutingNE “WebexMeetings”, where the CUBE IP address = 10.165.196.30. The example also shows commands to create a new OrigRedirect and Profile instances to associate with the RoutingNE, but existing instances can also be used.

NS_CLI/Policy/OrigRedirect> add wxm_Inst true CallTypes ALL supportTrunkGroupLookups disable applyAccessSideRules enableRestrictive

NS_CLI/Policy/OrigRedirect> get  wxm_Inst
Policy: OrigRedirect  Instance: wxm_Inst
  Enable = true
  CallTypes:
    Selection = {ALL}
    From = {PCS, ALL, TRMT, LO, GNT, DP, WXM, LPS, OA, TPS, EA, FGB, POA, SV, SVCD, IN, MS, CSV, EM, SVCO, SMC, ZD, NIL, CT, TF, GAN, TO, DA, OAP}
  supportTrunkGroupLookups:
    Selection = {disable}
    From = {disable, enablePermissive, enableRestrictive}
  applyAccessSideRules:
    Selection = {enableRestrictive}
    From = {disable, enablePermissive, enableRestrictive}

NS_CLI/Policy/Profile> add wxm_routing

NS_CLI/Policy/Profile> add wmx_routing OrigRedirect wxm_Inst

NS_CLI/Policy/Profile> add wmx_routing SubLocation  DefaultInst

NS_CLI/Policy/Profile> get profile wxm_routing 
Profile:  wxm_routing
                 Policy              Instance
   ==========================================
           OrigRedirect           wxm_Inst
            SubLocation           DefaultInst

NS_CLI/System/Device/RoutingNE> add  WebexMeetings 1240364 1 99 wxm_routing false OnLine AccessRoutingNE

NS_CLI/System/Device/RoutingNE/Address> add WebexMeetings 10.165.196.30 1 99 tcp

NS_CLI/System/Device/RoutingNE> get
Network Element  WebexMeetings
   Location      =  1240364
   Static Cost   =  1
   Static Weight =  99
   Poll          =  false
   OpState       =  enabled
   State         =  OnLine
   Profile       =  wxm_routing
   Signaling Attributes=  AccessRoutingNE
 
NS_CLI/System/Device/RoutingNE/Address> get
Routing NE   Address     Cost    Weight     Port    Transport Route  
WebexMeetings   10.165.196.30     1      99     -          tcp

With the example configuration, the CUBE sends to the NS an INVITE that is similar to the following (important fields in bold):

INVITE sip:+19991111111@domain.com:5060 SIP/2.0
Via:SIP/2.0/TCP 10.10.10.10:5060;branch=z9hG4bK7C7B9EB
Remote-Party-ID:" BroadWorks
"<sip:886222222222@domain.com>;screen=no;party=calling;privacy=off
From:" BroadWorks "<sip:+12403333333@10.20.20.20>;tag=958BDDF4-1AB
To:<sip:+19991111111@domain.com>
Date:Thu, 03 Nov 2022 12:39:58 GMT
Call-ID:75D3B642-5AAB11ED-AC82BA3C-276254A1@10.20.20.30
Supported:100rel,timer,resource-priority,replaces,sdp-anat
Min-SE:14400
Cisco-Guid: 1976459008-1521160685-2893855292-0660755617
X-Cisco-Meet-Info:hostCIUserUuid="52f4c6cb-c6a3-4283-a1ab04cc8828b7c1";meetingid="26551128462";siteUUID="ec6659987f473332e0531b04fc0acaec"
X-Cisco-Org-Id:82e2eb35-1610-44e7-9b20-ab607e026270
User-Agent: Cisco-SIPGateway/IOS-16.12.2s
Timestamp: 1667479198
Session-ID:
e13cc71f24ae400669d5247d8306ac23;remote=00000000000000000000000000000000
Allow:INVITE,OPTIONS,BYE,CANCEL,ACK,PRACK,UPDATE,REFER,SUBSCRIBE,NOTIFY,INFO,REGSTER
CSeq:101 INVITE
Contact:<sip:+12403333333@10.20.20.20:5060;transport=tcp>
Expires:180
Allow-Events:telephone-event
Max-Forwards:68

Where:

• INVITE Request URI contains the callback number

• Via header: contains the IP address of the CUBE which will be used to select the RoutingNE profile.

• X-Cisco-Info-Meet header: used to identify hostCIUserUuid, meetingid & siteUUID.

Upon receiving the INVITE, the NS uses the Via header to match with the RoutingNE “WebexMeetings”. This will in turn select the “wxm_routing” routing profile which contains the “wxm_Inst” instance of the OrigRedirect.

The NS OrigRedirect policy will then match the X-CISCO-MEET-INFO header:

X-Cisco-Meet-Info:hostCIUserUuid="52f4c6cb-c6a3-4283-a1ab04cc8828b7c1";meetingid="26551128462";siteUUID="ec6659987f473332e0531b04fc0acaec

with the Line Port configured on the VoiceXML virtual subscriber and send a 302 redirect to the AS pair hosting that subscriber. The 302 message is similar to the following:

SIP/2.0 302 Moved temporarily
Via:SIP/2.0/TCP 10.165.196.30:5060;branch=z9hG4bK5452684
From:" Webex "<sip:+12403332200@10.165.196.30>;tag=8EEAA586-1675
To:<sip:+14519615001@10.155.6.172>;tag=394411970-1602687588994
Call-ID:ABC5CCA2-D6411EB-8AD6D92D-EE20F768@10.165.196.30
CSeq:101 INVITE
Contact:<sip:+14519615001@hs2-bwks-v-as01-alpha.bwlab.org:5060;user=phone> ;q=0.5, <sip:+14519615001@hs2-bwks-v-as02-alpha.bwlab.org:5060;user=phone>;q=0.25
Content-Length:0

Alias

The domain in the INVITE URI (in the example, it’s bw.myenterprise.com) sent by the CUBE to the NS has to be recognized by the NS. This can be done by adding the domain on the NS_CLI/System/Alias context, for example:

NS_CLI/System/Alias> add bw.myenterprise.com

The command to configure the INVITE URI domain on the CUBE can be found in the in the next section, under dial-peer/session target, for example:

dial-peer voice 23401 voip
session target dns:bw.myenterprise.com

HostingNE

To support Webex Meetings call processing configuration options for billing and Session Admission Control, the Application Server’s Hosting NE signaling attributes CallTypeInfoRequired and RequiresChargeIndication must be enabled on the NS_CLI/System/Device/HostingNE context. For example:

NS_CLI/System/Device/HostingNE> set broadworksASHostNe signaling E164Compliant,
 CallTypeInfoRequired, SourceId, RequiresNetworkIndication RequiresChargeIndication;

Enable Webex Meeting Callback

In the callback scenario with the SIP X-Cisco-Meet-Info header, the CUBE sends the call to Network Server for originator redirect to the AS pair. The AS pair is determined based on the enableWebexMeetingHoostLookup system parameter.

NS_CLI/System/CallP/Options> get
  accessSideRoutingNeDeterminedViaSignaling = false
  disableNdcValidationForCalledNumbers = true
  forceRoutingNEProfile = false
  skipPrivatePoliciesOnEmergency = true
  maxReturnedContacts = 10
  enableWebexMeetingHostLookup = true

When enableWebexMeetingHoostLookup system paramter is set to true, the meeting host user CI UUID in the X-Cisco-Meet-Info header is used to identify the AS pair hosting the meeting host user.

INVITE sip:+19991111111@domain.com:5060 SIP/2.0
Via:SIP/2.0/TCP 10.10.10.10:5060;branch=z9hG4bK7C7B9EB
Remote-Party-ID:" BroadWorks "<sip:886222222222@domain.com>;screen=no;party=calling;privacy=off
From:" BroadWorks "<sip:+12403333333@10.20.20.20>;tag=958BDDF4-1AB
To:<sip:+19991111111@domain.com>
Date:Thu, 03 Nov 2022 12:39:58 GMT
Call-ID:75D3B642-5AAB11ED-AC82BA3C-276254A1@10.20.20.30
Supported:100rel,timer,resource-priority,replaces,sdp-anat
Min-SE:14400
Cisco-Guid: 1976459008-1521160685-2893855292-0660755617
X-Cisco-Meet-Info:hostCIUserUuid="52f4c6cb-c6a3-4283-a1ab-04cc8828b7c1";meetingid="26551128462";siteUUID="ec6659987f473332e0531b04fc0acaec"
X-Cisco-Org-Id:82e2eb35-1610-44e7-9b20-ab607e026270
User-Agent: Cisco-SIPGateway/IOS-16.12.2s
Timestamp: 1667479198
Session-ID: e13cc71f24ae400669d5247d8306ac23;remote=00000000000000000000000000000000
Allow:INVITE,OPTIONS,BYE,CANCEL,ACK,PRACK,UPDATE,REFER,SUBSCRIBE,NOTIFY,INFO,REGISTER
CSeq:101 INVITE
Contact:<sip:+12403333333@10.20.20.20:5060;transport=tcp>
Expires:180
Allow-Events:telephone-event
Max-Forwards:68

This section provides a validated configuration for how to deploy Cisco Unified Border Element (CUBE) as the Session Border Controller (SBC) for the Bring Your Own PSTN Solution.

This section focuses on the CUBE configurations that are necessary to interwork with the example Webex for Cisco BroadWorks configuration shown in the previous section. For a more general discussion of initial CUBE deployment and configuration, refer to the following guides: https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/voice/cube/configuration/cube-book/voi-cube-overview.html

https://help.webex.com/en-us/b6vrdc/Cisco-Webex-Edge-Audio-for-CUBE-Customer-Configuration-Guide

Deploy Your Own SBC Option

If you don’t want to deploy CUBE, you have the option to deploy your own SBC. However, note that this document does not provide a validated configuration for SBCs other than CUBE.

If you deploy your own SBC, you can follow the high-level CUBE configuration requirements (for example, assignments such as the domain, public and private interfaces, and gateways) to guide your configuration. However, refer to your SBC documentation for detailed command line help as the actual commands for your own SBC will likely differ from CUBE.

Unless specified otherwise, the remaining configuration requirements in Step 10 apply no matter which SBC you deploy. However, the command line examples are for CUBE only, unless specified that the example applies for other SBCs. For other SBCs, refer to your SBC documentation for configuration commands.

After the configuration and provisioning of the BYoPSTN solution is completed, the Partner is required to run through a set of acceptance test cases in order to certify their solution. This is a required step for the Partner BYoPSTN to be approved and enabled.

The acceptance test cases are outlined in the document Bring Your Own PSTN Acceptance Procedure Webex For Cisco BroadWorks at: https://www.cisco.com/c/dam/en/us/td/docs/voice_ip_comm/cloudCollaboration/wx4bwks/BYoPSTN/BYoPSTN_Acceptance.pdf .

The partner should provide the results of the successfully executed acceptance tests to the onboarding and certification teams.

Questions, issues and results from the execution of the acceptance test cases should be reported and shared in the Webex space assigned for onboarding the Partner.