Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1364
Views
5
Helpful
3
Replies

SSO / CUCM 12.5 use ITLRecovery or Tomcat MultiSan cert

rchaseling
Level 4
Level 4

‎07-16-2021 06:43 AM

Hi,

Just wondering if there is any downside to using the ITLRecorvery cert for enabling SSO? Does this involve pushing out the ITLRecovery Cert to all PC endpoints?

 

As Companies are all only signing internal certs for 1 year now - it creates a bit of overhead having to re-do the SSO agreement every year for multiple customers

 

As the ITLRecovery it valid for 15 years or so this would avoid that I assume?

 

Thoughts?

Labels:
0 Helpful
3 Replies 3

Nithin Eluvathingal
VIP
VIP

‎07-16-2021 07:27 AM - edited ‎07-16-2021 08:07 AM

For SSO we  use tomcat.  ITLrecovery is used for signing ITL/CTL. 

 

I recently signed my UC server with valid of 3 years and I face no issues but not for  SSO. 

 

Public signed CA certs are for one year. 



Response Signature


0 Helpful

rchaseling
Level 4
Level 4

‎07-16-2021 07:31 AM

Screenshot from 12.5 SU4

Preview file
64 KB
0 Helpful

Nithin Eluvathingal
VIP
VIP
In response to rchaseling

‎07-16-2021 08:38 AM - edited ‎07-16-2021 08:42 AM

I believe Thats a new enhancement, on my 12.5(1) version it never mentioned ITL recovery.  Never did SSO on SU4 so didn't notice this change. 

 

When talking about Self signed we consider its a least secure certificate. And some  organisation doesn't show interest in  using self signed certs. 

 

Both self signed and CA signed works if you do it correctly. 

 

 

 

 



Response Signature


Customers Also Viewed These Support Documents