Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2310
Views
0
Helpful
7
Replies

Cisco Webex Meeting Server 2.8 TLS issue

sirajuddeen t p
Level 1
Level 1

‎07-13-2017 12:18 AM - edited ‎03-17-2019 06:58 PM

Dear Team,

I have recently deployed Cisco webex meeting server 2.8 for my client. When users try to login (found in windows 10) the webex session Internet explorer gives error that please enable Tls 1.0, TLS 1.1 and TLS 1.2.

When the user checked the advanced option in Internet explorer TLS 1.0 was selected but TLS1.1 and 1.2 are greyed out. Hence we had to edit group policy to support TLS1.1 and !.2

Is there a way to support TLS 1.0 by CWMS 2.8? or any other workaround since it is difficult to advice the end users to change their PC group policy (not in enterprise domain or customer).

Thank you.

Siraj

1 person had this problem
Labels:
0 Helpful
7 Replies 7

dpetrovi
Cisco Employee
Cisco Employee

‎07-13-2017 05:01 AM

Hi Siraj,

TLS 1.0 is considered unsecured and support for it was removed from the product. The users should enabled TLS 1.1/1.2. 

Unfortunately there is no other workaround.

-Dejan

0 Helpful

sirajuddeen t p
Level 1
Level 1
In response to dpetrovi

‎07-25-2017 02:53 AM

Thank you Dejan.

0 Helpful

Dubrov.MGTS
Level 1
Level 1
In response to dpetrovi

‎09-07-2017 08:54 AM

Hello.

We have same error in IE.

TLS1.1 and 1.2 enabled in browser properties.

Problem can be resolved by disabling IE option "check for publisher's certificate revocation

But this solution can not be accepted by security department.

Does any way to resolve this issue?

0 Helpful

christoph.hable
Level 1
Level 1
In response to Dubrov.MGTS

‎09-07-2017 04:07 PM

If disabling of "check for publisher's certificate revocation"resolves the problem there is maybe a problem accessing the CRL of your used CA (internal, public?) - what CRL Distribution Point and AIA does your certificate of CWMS contains?
0 Helpful

Dubrov.MGTS
Level 1
Level 1
In response to christoph.hable

‎09-08-2017 03:18 AM

Hello.

This is public wildcard certificate from GeoTrust

CRL http://gn.symcb.com/gn.crl is accessible from PC

0 Helpful

christoph.hable
Level 1
Level 1
In response to Dubrov.MGTS

‎09-08-2017 05:42 AM

OK... please try to have a look on the CAPI2 logfiles to figure out the root cause for your error.

 

https://blogs.msdn.microsoft.com/benjaminperkins/2013/09/30/enable-capi2-event-logging-to-troubleshoot-pki-and-ssl-certificate-issues/

0 Helpful

sirajuddeen t p
Level 1
Level 1
In response to christoph.hable

‎11-01-2017 03:15 AM

Thank you All. The issue resolved. I have involved TAC and found my internal Proxy servers caused the issue. I bypassed the traffic and updated CWMS without any issue.
0 Helpful
Customers Also Viewed These Support Documents