Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2580
Views
0
Helpful
2
Replies

Expressway-Edge certificate validity expire

Go to solution
geeta.kumari1
Level 1
Level 1

‎06-07-2016 11:34 AM - edited ‎03-17-2019 06:10 PM

Hi All,

Just want to understand that if the expressway edge certificate validity expires still the expressway edge present the cert. file to jabber client aland gives option to either decline/continue. It dose give me error that " cannot communicate to server ".

Post that if we still enter the login details we can see in logs that after all the srv record resolution process it fails to download the file from tftp and gives error " unable to locate server ".

If the certificate has expired will still the edge config request will be pass down to vcs control.

Do certificate expiration will cause login failure issue for jabber clients.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
zdesignstudio
Level 4
Level 4

‎06-08-2016 12:57 PM

If the certificate on the edge is expired then it is no longer valid and the connection between the edge and core will not be up. With this in mind, all traffic from the Internet (Jabber) will never reach the core expressway and thus never will reach CUCM or IM&P.

Certificates in an MRA setup need to ALWAYS be valid or it will no longer work.

Please rate useful posts and mark answers as complete if applicable.

Please rate useful posts and mark answers as correct if applicable.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
zdesignstudio
Level 4
Level 4

‎06-08-2016 12:57 PM

If the certificate on the edge is expired then it is no longer valid and the connection between the edge and core will not be up. With this in mind, all traffic from the Internet (Jabber) will never reach the core expressway and thus never will reach CUCM or IM&P.

Certificates in an MRA setup need to ALWAYS be valid or it will no longer work.

Please rate useful posts and mark answers as complete if applicable.

Please rate useful posts and mark answers as correct if applicable.
0 Helpful

Go to solution
geeta.kumari1
Level 1
Level 1
In response to zdesignstudio

‎06-08-2016 05:58 PM

Hi Zdesign,

Many thanks for reply.

Yes tls communication will not establish with edge. For the very first attempt whrn auyo discovery happens for domain name it fails with certificate error at edge but if we still put the credential i  can see the request passes down the control, the config file is identified and during the tftp download it agains fail because of certificate. I was stuck in understanding why the request passed down to expressway control.

0 Helpful
Customers Also Viewed These Support Documents