Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
18997
Views
0
Helpful
4
Replies

how avoide the error Error Code: DLG_FLAGS_INVALID_CA DLG_FLAGS_SEC_CERT_CN_INVALID while login the CUCM

ctsvoiceteam
Level 1
Level 1

‎12-02-2017 12:16 AM - edited ‎03-17-2019 11:43 AM

Hello guys,

anyone can give a solution to avoid the below error while login the cucm, its for a automation purpose. this page is not allowed to move forward, please help guys

 

Error Code: DLG_FLAGS_INVALID_CA DLG_FLAGS_SEC_CERT_CN_INVALID.

This site isn’t secure

This site is not secure
This might mean that someone’s trying to fool you or steal any info you send to the server. You should close this site immediately.

Recommended iconClose this tab
More information More information

Your PC doesn’t trust this website’s security certificate.
The hostname in the website’s security certificate differs from the website you are trying to visit.

Error Code: DLG_FLAGS_INVALID_CA
DLG_FLAGS_SEC_CERT_CN_INVALID

Not recommended iconGo on to the webpage (not recommended)

Capture.PNG

 

Labels:
0 Helpful
4 Replies 4

Jonathan Schulenberg
Hall of Fame
Hall of Fame

‎12-02-2017 07:11 AM

Assuming you have a properly installed CA-signed certificate installed for Tomcat, it would seem to be as easy as trusting that CA on the client browser and entering a URL that matches the server’s DNS FQDN (eg callmanager1.domain.tld).
0 Helpful

ctsvoiceteam
Level 1
Level 1
In response to Jonathan Schulenberg

‎12-03-2017 12:04 AM

Hi jonathan,

iam new to this, could you please share any link related to installing CA-signed certificate for Tomcat. it would be great.

0 Helpful

Jonathan Schulenberg
Hall of Fame
Hall of Fame
In response to ctsvoiceteam

‎12-04-2017 05:52 AM

I'll assume you already understand X.509 (aka TLS/SSL) certificates and the general concept of Certificate Authorities. If not, Google is your friend there. As for CUCM, there is no one document that perfectly explains all of the relevant knowledge. Here are a few useful ones though:
Security Guide for Cisco Unified Communications Manager https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/security/11_5_1/secugd/CUCM_BK_SEE2CFE1_00_cucm-security-guide-1151/CUCM_BK_SEE2CFE1_00_cucm-security-guide-1151_chapter_01.html
Unified Communication Cluster Setup with CA-Signed Multi-Server Subject Alternate Name Configuration Example https://www.cisco.com/c/en/us/support/docs/unified-communications/unified-communications-manager-callmanager/118731-configure-san-00.html

Be absolutely certain that you understand how the ITL works. The Tomcat certificate isn't directly involved in the IT but you shouldn't be working on certificates without an awareness of it. Breaking the ITL would make for a very bad day.
https://supportforums.cisco.com/t5/collaboration-voice-and-video/communications-manager-security-by-default-and-itl-operation-and/ta-p/3129362
0 Helpful

rosswest18
Level 1
Level 1

‎01-17-2018 09:35 PM

I got this similar error code, this is very irritating and can't find the solutions to this issue. But, I got a great help from https://geekermag.com/error-code-dlg_flags_invalid_ca/, this site, where I got the actual solutions of this error code. The information about this error of this site is really useful. The page has full explanation about the error and solution to troubleshoot the issue.If you want you can check the site.

0 Helpful
Customers Also Viewed These Support Documents