User Friendly URL for CUC Web Inbox

jerjiang2 · ‎02-09-2020

Can I please have question about importing certificate into CUC? Thanks.

We have two CUC, cuc01.xx.nz and cuc02.xx.nz. I've generated CSR, got it signed by server team and uploaded it to CUC. Now users can use both https://cuc01.xx.nz and https://cuc02.xx.nz to access Web Inbox without seeing "This site is not secure" alert.

Now the customer wants users to use a more user friendly URL "UnityVoiceMessage.xx.nz" to access Web Inbox. This new URL points to cuc02.xx.nz on DNS server by configured a CNAME cuc02.xx.nz for DNS A record "UnityVoiceMessage.xx.nz"

I got an "UnityVoiceMessage.xx.nz" certificate from Server team(I haven't generated any CSR), uploaded it to CUC(Certificate Purpose: Tomcat-Trust) successfully, but when users login "UnityVoiceMessage.xx.nz" they are still seeing "This site is not secure" alert. Just wondering how to make it work without seeing this alert? Thanks.

Jaime Valencia · ‎02-09-2020

You added it to a -trust store, it's expected it won't work for your purpose.

Tomcat is still using the cert with only cuc01 and cuc02 in the CN/SAN, if you only have those entries, then only those two won't give the error.

HTH

java

if this helps, please rate

jerjiang2 · ‎02-09-2020

Thank you Jaime for your reply. Do you happen to know Is there any other way to achieve it like configuring DNS server, etc? I know I can change one of the CUC server hostname to UnityVoiceMessage.xx.nz, generate CSR, get it signed and upload it, but it could be the last resort if the customer really want to use the domain name.

jerjiang2 · ‎02-10-2020

I was thinking to use Multi-SAN to generate CSR and configure UnityVoiceMessage.xx.nz as common name. Would it work?