Tomcat and Call Manager certificate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-19-2019 07:58 AM
Hi,
I could see my call manager is having tomcat, tomcat-trust and Call Manager certificate as CA Signed and they are going to expire. To renew the same, i have to regenerate the certificates and have to give the same to CA to be signed and they will provide us the root and intermediate certificates to upload it into the server.
Can someone tell me what will be the impact if i not renew the tomcat and Call manager certificates?
What will be the extension for root and intermediate certificates given by CA? is that .csr or .pem or something else
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-19-2019 08:51 AM
If your tomcat cert expires you may notice a few different experiences, all depends on what features you're using, and whether or not you're asking about admin facing or user facing impacts. E.g., If users are used to accessing the Self Care portal, then they will start to see a browser warning there. If you are doing CUC PIN sync, then your CUCM to CUC AXL connection will be impacted. Etc.
If your CallManager certificate expires, in most cases, nothing bad will happen; as I've had many systems brought to my attention post-expiration, but fully functional, and we just regenerate them.
It seems like you're new to certificate work, and I'd encourage you to read the following article:
https://www.cisco.com/c/en/us/support/docs/unified-communications/unified-communications-manager-callmanager/200199-CUCM-Certificate-Regeneration-Renewal-Pr.html
Take a backup before you do any work, and reset your phones after each CM cert change! Good luck!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-19-2019 06:36 PM
