Details
Use this setting to protect individual dial plans if the UM Server cannot be started in TLS Mode. To use this setting, the UM Server must be started in DUAL Mode.
Rationale:
If the UM role is not started in secure mode, each dial plan is individually vulnerable to traffic being captured by a malicious third party.
Solution
To implement the recommended state, execute the following PowerShell cmdlet:
Set-UMDialPlan -identity MySecureDialPlan -VoIPSecurity Secured
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Windows.