Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
712
Views
0
Helpful
4
Replies

TMSPE with TLS enabled issue

Go to solution
maciej_wilk
Level 1
Level 1

‎02-06-2013 11:50 AM - edited ‎03-18-2019 12:33 AM

Hi All,

When setting the Server Address in TMS Connection Settings under Provisioning Tab for VCS Control as the FQDN, the status for all services is OK but I receive the following error:

Certificate verification is enabled and certificate hostname checking is enabled. All is good besides the error.

When I change the FQDN to the IP address of TMS as suggested by the error, the services fail with the following error:

So I have to disable certificate hostname checking for the services to report OK status.

Is this a bug or am I missing something?

Kind regards

Maciek

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Magnus Ohm
Cisco Employee
Cisco Employee
In response to maciej_wilk

‎02-07-2013 12:34 AM

Hi

Check in the TMS Admin tools --> Configuration --> Network settings

IS the FQDN of the TMS typed in there? If not, try to type it in and setup hostname + hostname check as you did before. Does the error still stick?

I have not tested it but I have seen this before when the management address does not match the address is in the TMS Network settings.

/Magnus.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Justin Ferello
Level 5
Level 5

‎02-06-2013 06:31 PM

Maciek,

If you want to enable hostname verification then you need to have the following items in place:
1) A valid DNS entry for the TMS & VCS
2) A valid 3rd party signed certificate on the TMS & VCS
3) And if you happen to choose a certificate signer that is not listed in the VCS or TMS default CA list, then you will need to upload/import the correct CA Root and or Intermediate certificates to both systems.

Thanks,
Justin

Sent from Cisco Technical Support iPad App

Thank you,
Justin Ferello
Technical Support Specialist, ScanSource KBZ
0 Helpful

Go to solution
maciej_wilk
Level 1
Level 1
In response to Justin Ferello

‎02-07-2013 12:25 AM

Hi Justin,

Thanks for the answer.

1. Both TMS & VCS have valid entries in my DNS.

2. Certificates with FQDNs of VCS and TMS as CN are imported from a Microsoft CA.

3. Trusted root CAs are ok on both systems.

And it works as expected when the server name is set to the FQDN of TMS.

But then I get the error that it should be an IP address..

Kind regards

Maciek

0 Helpful

Go to solution
Magnus Ohm
Cisco Employee
Cisco Employee
In response to maciej_wilk

‎02-07-2013 12:34 AM

Hi

Check in the TMS Admin tools --> Configuration --> Network settings

IS the FQDN of the TMS typed in there? If not, try to type it in and setup hostname + hostname check as you did before. Does the error still stick?

I have not tested it but I have seen this before when the management address does not match the address is in the TMS Network settings.

/Magnus.

0 Helpful

Go to solution
maciej_wilk
Level 1
Level 1
In response to Magnus Ohm

‎02-07-2013 12:47 AM

Percect, this resolved the issue

Thank you!

Kind regards

Maciek

0 Helpful
Customers Also Viewed These Support Documents