Cisco Community
English
Register
How do YOU and your teams use messaging in Webex? Let us know for a chance to win some Webex swag!
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
2791
Views
5
Helpful
6
Replies
PWJPW
Beginner
Beginner
‎09-22-2016 03:35 AM
‎09-22-2016 03:35 AM

CUPS 11.5 not allowing XMPP clients to authenticate

Hi All

We recently upgraded from UC 10.5.2 to 11.5.1 (CUCM,CUPS and CUC).

We use Jabber for Windows and MAC devices, all working well, but all 3rd party XMPP clients can no longer authenticate.

Looking at the debug logs of an XMPP client (such as Pidgin), it shows the problem:

(11:26:42) jabber: Sending (ssl) (me@mydomain.com): <stream:stream to='mydomain.com' xmlns='jabber:client' xmlns:stream='http://etherx.jabber.org/streams' version='1.0'>
(11:26:42) jabber: Recv (ssl)(178): <stream:stream xmlns='jabber:client' xml:lang='en-US.UTF-8' xmlns:stream='http://etherx.jabber.org/streams' from='mydomain.com' id='TJbNCkdwzZW7RT0o0SvDvA6628' version='1.0'>
(11:26:42) jabber: Recv (ssl)(139): <stream:features><mechanisms xmlns='urn:ietf:params:xml:ns:xmpp-sasl'><mechanism>CISCO-VTG-TOKEN</mechanism></mechanisms></stream:features>
(11:26:42) sasl: Mechs found: CISCO-VTG-TOKEN
(11:26:42) sasl: No worthy mechs found
(11:26:42) connection: Connection error on 06DF7CE8 (reason: 3 description: Server does not use any supported authentication method)

However, according to Cisco documentation, CUPS should support/allow both PLAIN AND CISCO-VTG-TOKEN mechanisms.

https://developer.cisco.com/fileMedia/download/a2ce9071-4c3b-4ad5-adaa-095153ea1b4c

In particular:

Cisco Unified CM IM and Presence provides two different SASL authentication mechanisms when connecting over the XMPP Interface: PLAIN and CISCO_VTG_TOKEN. When an XMPP Client connects to Cisco Unified CM IM and Presence, the server will return the supported SASL authentication mechanisms in in stream features:

<mechanisms>
<mechanism>PLAIN</mechanism>
<mechanism>CISCO_VTG_TOKEN</mechanism>
</mechanisms>

Seeing as CUPS is not sending the PLAIN mechanism option to the client, it cannot proceed.

Does anyone know a setting in CUPS where it may have been disabled, or how else to check/debug?

Thanks

James

Labels:
9 people had this problem
6 REPLIES 6
PWJPW
Beginner
Beginner
‎09-26-2016 12:48 AM
‎09-26-2016 12:48 AM

Just hoping someone would be able to advise what the solution may be.

Thank you

James

0 Helpful
PWJPW
Beginner
Beginner
‎10-04-2016 09:44 AM
‎10-04-2016 09:44 AM

Just hoping someone can work some magic on this for me?

0 Helpful
a.kolpakov
Beginner
Beginner
In response to PWJPW
‎10-18-2019 12:14 AM
‎10-18-2019 12:14 AM

HI!

 

Do you find solution of this issue?

0 Helpful
jkhtkd5385
Beginner
Beginner
‎05-31-2017 06:39 AM
‎05-31-2017 06:39 AM

Did anyone ever get this to work? I have it working internally but not through Expressway.

0 Helpful
peterputt
Beginner
Beginner
In response to jkhtkd5385
‎01-23-2018 07:48 AM
‎01-23-2018 07:48 AM

Hi

 

how did you get to work internally?

 

Regards,
Peter

0 Helpful
visitdemo11
Beginner
Beginner
‎11-01-2017 03:39 AM
‎11-01-2017 03:39 AM

How did you solve this issue?
0 Helpful
Latest Contents
Finesse Call Overlap Issue with CVP Unreachable destination ...
Created by Sharath Gudemella on 07-03-2022 12:53 AM
0
0
0
0
Symptoms Cisco Finesse Not Ready - Call Overlap status is very a very common issue seen on Finesse desktop. Agents miss two calls and they are put in Not Ready - Call Overlap status. This is very likely related to CVP server and it's unreachabl... view more
Cisco Meeting Server Deploying Certificates Soon
Created by Meddane on 07-02-2022 11:53 AM
0
0
0
0
Lab 1: Cisco Meeting Server Standalone CertificatesLab 2: Cisco Meeting Server Cluster Certificates with Multi-SANLab 3: Multiple Certificates with Multiple CA ServersLab 4: Cisco Meeting Server Cluster Certificates Advanced ScenarioLab 5: Streamer Servic... view more
Cisco Meeting Server Multiple Certificates and Multiple CA S...
Created by Meddane on 06-28-2022 02:57 PM
0
0
0
0
Certificates are the first step to deploy Cisco Meeting Server, preparing certificate are very important to enable different services. As a VOIP administrator, mastering the concept of certificates is unavoidable Using multiple CA servers, instead of a si... view more
Cisco Meeting Server Clustering and Certificates document
Created by Meddane on 06-24-2022 04:11 PM
0
0
0
0
I just finished to write a comprehensive certificates preparation for Cisco Meeting Server Clustering. Through 60 pages I explained in detail, how to create certificates for database cluster, callbridge cluster, certificate chain for webbridge3, certifica... view more
Route Pattern, Translation Pattern and Transformation Patter...
Created by Meddane on 06-22-2022 10:33 AM
0
0
0
0
Route Pattern, Translation Pattern and Transformation Pattern on Cisco Unified Communication Manager with four use cases.  
Ask a Question
Create
+ Discussion
+ Blog
+ Document
+ Video
+ Project Story
Find more resources
Discussions
Blogs
Documents
Events
Videos
Project Gallery
New Community Member Guide
Related support document topics
Recognize Your Peers
Spotlight Award Nomination
Content for Community-Ad
Webex Community How to Use the Community
NEW Webex Learning Catalog Help Center Share a Product Idea