Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
228
Views
0
Helpful
1
Replies

Are CTL / ITL certificates used by AnyConnect? Why are there two hashes in phone config?

Go to solution
esa_fresa
Level 1
Level 1

‎06-24-2015 12:52 PM - edited ‎03-19-2019 09:44 AM

Are the CTL / ITL certificates in CUCM the same certificates that are put into the phone configuration to be used by AnyConnect for IP Phone vpn?

 

And a follow up question. Why does my phone config have two certificate hashes?

<credentials>

<hashAlg>0</hashAlg>

<certHash1>Hy2hWyNUwlvxxx...=</certHash1>

<certHash2>SznAL6KKbv9kexxx...=</certHash2>

</credentials>

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Manish Gogna
Cisco Employee
Cisco Employee

‎06-24-2015 08:16 PM

Hi,

Specific certificate requirements for CUCM and ASA when using ANyconnect are detailed here

http://www.cisco.com/c/en/us/support/docs/unified-communications/unified-communications-manager-callmanager/115785-anyconnect-vpn-00.html#anc5

These are different from the ITL/CTL certs which are used by all IP phones on cucm cluster.

 

HTH

Manish

 

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Manish Gogna
Cisco Employee
Cisco Employee

‎06-24-2015 08:16 PM

Hi,

Specific certificate requirements for CUCM and ASA when using ANyconnect are detailed here

http://www.cisco.com/c/en/us/support/docs/unified-communications/unified-communications-manager-callmanager/115785-anyconnect-vpn-00.html#anc5

These are different from the ITL/CTL certs which are used by all IP phones on cucm cluster.

 

HTH

Manish

 

0 Helpful
Customers Also Viewed These Support Documents