03-13-2018 12:10 PM - edited 03-14-2019 06:02 PM
Hi,
We are planning to upgrade our UCCX from 10.6(1)SU2 to 11.5(1)SU1. I have read in the documentation that starting 11.5, tomcat service is preconfigured with RSA and ECDSA certificates. We are using internal CA-signed certificates.
There is bug reported for the version 11.5(1) CSCvb46250 and we can apply a cop if we do not want to present the ECDSA certificate to the agents. And this bug is fixed for the version 11.5(1)SU1. Does it mean that I do not need to sign the tomcat-ECDSA and the agents will not be prompted to accept the ECDSA certificate? Is there any problem if we do not want to sign the tomcat-ECDSA?
Regards,
Libin Benedict
03-13-2018 12:59 PM
03-13-2018 01:28 PM
Hi Anthony,
Thanks for the response.
But the COP is applicable for 11.5(1) and not for the SU1. I would like to know how I can skip the signing of tomcat-ECDSA.
The current tomcat certificates in 10.6 version are signed and I hope they will be carried forward during the upgrade.
Regards,
Libin Benedict
Libin Benedict
09-13-2023 05:21 PM
Hi, I tried to find documentation for UCCX 12.5, but cannot seem to find any.
Is this still applicable to fresh installed UCCX 12.5? Do we still have to apply COP or the RSA certificate is enough?
Thanks!
10-23-2023 04:00 PM
UCCX 12.5 does not use ECDSA certificates, so says this configuration guide. Systems I work with have a self-signed ECDSA cert and a CA signed RSA cert.
Check out:
"Starting from 11.6, use of ECDSA certificates has been removed from the UCCX solution completely. This includes UCCX, SM/CCP, CUIC and Finesse."
10-24-2023 01:45 PM
It really seems that UCCX 12.5 doesn't use ECDSA certificates, but I have seen cases where, even if CCX doesn't use an ECDS, you need to regenerate it after an upgrade (self-signed ECDS cert is sufficient). eg:
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide