02-20-2018 06:13 AM - edited 03-17-2019 12:15 PM
After Configuring Tomocat Multi-SAN Certificate configuration on CUCM and IMP Cluster I am still getting the following error message when trying to access any of the CUCM Servers from any browser :
- We Configured the Certificates as per the Cisco Documentation
- We restarted the Tomcat on all servers.
- We Uploaded the Root and Intermediate Certificate as Tomcat Trust on all servers.
- We Restarted the TFTP Service on the TFTP Server
- Multi-SAN Certificate are replicated across all cluster.
- On the CLient PC we can see that the certificate have the Comman name UCMPUB-MS.example.lab
and the SAN Names as the FQDN of all CUCM and IMP nodes.
- DNS are deployed for all nodes in both Forward and Reverse Zone.
Any Clue on how to investigate this,,,
Thanks,
02-21-2018 06:11 AM
What CA was used to sign the cert? Do the root and intermediate certs exist on the client PC? When browsing the servers are you entering the FULL FQNDs as defined on the certs as SANs (they need to match exactly).
02-21-2018 06:16 AM
- What CA was used to sign the cert? Internal CA
- Do the root and intermediate certs exist on the client PC? yes
- When browsing the servers are you entering the FULL FQNDs as defined on the certs as SANs (they need to match exactly).? Yes ,Exactly
Thanks,,,
02-21-2018 01:03 PM
Which Browser are you connecting from? Did you try different browsers?
02-21-2018 01:15 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide