Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
839
Views
5
Helpful
1
Replies

Implications of Turning Automatic CRL Checking in Expressway

brown3wab
Level 1
Level 1

‎12-14-2020 12:19 PM - edited ‎12-14-2020 12:32 PM

We are currently running an Expressway C and E.

Expressway versions 12.5.6

CUCM 11.5.(1)su8

Due to increased certificate security requirements for apple iOS, we have been told we need to turn on Certificate Revocation Checking in the SIP protocol config. Basically, Jabber users on iOS devices are being prompted to accept the certificate, because apple requires the CRL checking. I would like to move forward with turning on Automatic CRL updates. 


I am trying to find out if we need to turn this on in both the C and the E servers and what is the possible impact of turning it on?  We are currently hosting around 100 Jabber users at any time through MRA and have a couple handfuls of SIP B2B video streams going on at any time. I want to make sure I don't create any severe impact for our organization.  Thank you for any guidance you can provide. 

 

 

Labels:
0 Helpful
1 Reply 1

Adam Pawlowski
VIP Alumni
VIP Alumni

‎12-14-2020 05:40 PM

Is your certificate valid and signed by one of the trusted CAs? The Jabber client doesn't exchange certificates for anything as far as I am aware?

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card