Hi Folks
we are setting up a new ASA Proxy service for registering IP Phones from home users. We have just figured out that the existing CAPF cert on CUCM is expired for a couple of years. Our existing CUCM cluster does not operate in Secure mode.
I need to generate this new CAPF cert. Is there anything I need to consider before I do so? Is there any other services that would be affected by doing so?
http://www.cisco.com/c/en/us/support/docs/unified-communications/unified-communications-manager-callmanager/200199-CUCM-Certificate-Regeneration-Renewal-Pr.html
https://supportforums.cisco.com/discussion/13011376/cucm-certificate-capf-alerts
Regards
Deepak
If you haven't been using Mixed mode for Cluster Security Mode or ASA Proxy in the past, it's likely your CAPF service was not being used. It's possible the CAPF service hasn't even been activated.
CAPF regeneration will affect the LSC certificates for secure IP phones and any existing ASA Proxy / Phone VPN integrations, but that's about it.