Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
469
Views
5
Helpful
2
Replies

Regenerating CAPF Cert

CiscoRunner
Beginner
Beginner

‎10-18-2016 01:23 AM - edited ‎03-17-2019 08:23 AM

Hi Folks

we are setting up a new ASA Proxy service for registering IP Phones from home users. We have just figured out that the existing CAPF cert on CUCM is expired for a couple of years. Our existing CUCM cluster does not operate in Secure mode. 

I need to generate this new CAPF cert. Is there anything I need to consider before I do so? Is there any other services that would be affected by doing so?

Labels:
0 Helpful
2 Replies 2

Deepak Rawat
Cisco Employee
Cisco Employee

‎10-18-2016 01:31 AM

http://www.cisco.com/c/en/us/support/docs/unified-communications/unified-communications-manager-callmanager/200199-CUCM-Certificate-Regeneration-Renewal-Pr.html

https://supportforums.cisco.com/discussion/13011376/cucm-certificate-capf-alerts

Regards

Deepak

Timothy McRorie
Cisco Employee
Cisco Employee

‎10-27-2016 12:32 AM

If you haven't been using Mixed mode for Cluster Security Mode or ASA Proxy in the past, it's likely your CAPF service was not being used.  It's possible the CAPF service hasn't even been activated.


CAPF regeneration will affect the LSC certificates for secure IP phones and any existing ASA Proxy / Phone VPN integrations, but that's about it.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers
Spotlight Award Nomination
Customers Also Viewed These Support Documents