I have a question about the MS teams direct routing Ca Certificate upgrade.
Is it ok only to create another trustpoint on the cube with
crypto pki trustpoint <trustpoint name>
crypto pki authenticate <trustpoint name>
or are there more steps to do when the cubes already are connected to microsoft teams cloud?
Solved! Go to Solution.
there is an information to add the Digicert Root G2 ca cert to the cubes as the MS Baltimore CA willl not be valid this year.
So I understood from that that if the cubes have the Baltimore root CA then the new certificate should be added also as a trustpoint (something like when I add the new CA to the truststore of CUCM for tomcat service e.g.)
Ok, and that is the point, that I didnt configured it yet so I am trying to find out how to do it.
from my understanding I need only to set the trustpoint name and then authenticate the root ca from .pem file ? (no new key generation or so)
the name of the trustpoint has to be the same as certificate or it is only the "identifier"?
I have tested it on the gns3 but I found out that I can copy only 255 characters from the cert, and then it will stop. is there some setting on the ios how I can pass this ?