Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2785
Views
0
Helpful
6
Replies

UCCX script - URL document/https support?

antonylincoln2
Level 1
Level 1

‎09-28-2011 03:19 AM - edited ‎03-14-2019 08:37 AM

Hi,

We're running UCCX 7.0(1)SR03 and currently have a working script that talks to a webservice using URL doc/GET XML doc steps.

The Create URL Doc steps work perfectly when the doc URL is prefix with http:// but if we modify this to https:// (the server has a valid cert etc) it no longer works.

When I looked at this a few months ago, I got a IO exceptions (sorry, don't have a note - but they were different from the exceptions we are getting now) and gave up after a while and stuck with http, but I need to rectify this.

The exception that is raised is:

java.io.WriteAbortedException: writing aborted; java.io.NotSerializableException: sun.security.provider.certpath.AdjacencyList

A quick google doesn't really help much.

I did suspect it might be related to the CA certs in the included version of Java, so imported these using keytool, but still the same behaviour.

Does anyone have a script using https?

Any assistance appreciated!

Thanks,

Antony.

Labels:
0 Helpful
6 Replies 6

villarrealed
Level 1
Level 1

‎09-28-2011 09:18 AM

Antony,

Unfortunately, the get URL step in UCCX does not support https.  Your only option would be to write a Java class to handle this functionality. 

Ed

0 Helpful

antonylincoln2
Level 1
Level 1
In response to villarrealed

‎09-28-2011 09:22 AM

Ed - thanks.

That'll be fun - I have close to zero knowledge of Java!

Was also hoping to make this as clean as possible, for the impending move to UCCX 8 - as I understand there have been some problems with using custom Java classes?

0 Helpful

Aaron Harrison
VIP Alumni
VIP Alumni
In response to antonylincoln2

‎09-28-2011 01:13 PM

Hi

Other options would be Plan A: allow non-SSL connections from the UCCX server.

Or plan B : put in another web server running whatever you find easiest to program, and have that read the file from the HTTPS server, then relay it back to the client (the UCCX server) over a non-SSL connection.

Aaron

Aaron Please remember to rate helpful posts to identify useful responses, and mark 'Answered' if appropriate!
0 Helpful

antonylincoln2
Level 1
Level 1
In response to Aaron Harrison

‎09-29-2011 06:07 AM

Took a step back and revisted doc URL https support this morning.

Turns out it *does* work – provided you use a cert (on the webservice) that is signed by a 3rd party CA that is in the JRE trust list

It works with a Geotrust root signed cert.

I imported our internal CA certs to the Java keystore but they just don’t work (although, admittedly I haven’t restarted the CRS engine, so that might have something to do with it)

0 Helpful

filipe.paredes
Level 1
Level 1
In response to antonylincoln2

‎12-13-2011 10:22 AM

Antony,

I'm having the same problem. I tried with a Verisign certificate, but with a trial certificate as root for my webservice certificate. It didn't work, probably becaus JRE does not have the Verisign Trial Secure Server CA – G2

When you tried with the GeoTrust certificate, it was also a trial version?

0 Helpful

antonylincoln2
Level 1
Level 1
In response to filipe.paredes

‎12-14-2011 01:02 AM

Hi Filipe,

Yes - GeoTrust certificate was initally a trial, then once proven we purchased and all was well. Cert chain is as follows (the last cert I've blanked out in the image):

Hope this helps!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents