cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
167
Views
0
Helpful
2
Replies
Highlighted

CA Signed TOMCAT expired, need advice on renewal

Hi All,

 

I am currently working on a cluster where Tomcat certificates are going to be expired in the coming week, and I am seeking help with the below query's:

 

We are not using Jabber/Extension Mobility, do I still need to renew the certs between CUCM/CUC nodes?

CUCM_A----SIP----CUC_A (Tomcats will be expired) Do I need to renew for this scenario?

CUCMCluster_A----SIP----CUCMCluster_B (Tomcats will be expired) Do I need to renew for this scenario?

 

CUC/CUCM 10.5

 

Thanks

2 REPLIES 2
Highlighted
VIP Advocate

U should renew the certificates. 

 

if self signed  certificate you can regenerate the certificate from CUCM. 

if CA signed get it signed from CA using the CSR.

=>>>If this answered your question, please click "ACCEPT AS SOLUTION"<<<=
=>>>If you find this response useful, please mark it as "HELPFUL"<<<=
Highlighted
Hall of Fame Cisco Employee

Simple answer is that you should NEVER let your system work with expired certificates.

If you don't want to pay for CA certs, or don't want to get internal CA certs, you can just use self-signed certificates.

 

As to your questions to the call flows and tomcat, strongly suggest you review the documentation related to the usage of each certificate to understand when they're used.

HTH

java

if this helps, please rate
Content for Community-Ad