Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1281
Views
30
Helpful
7
Replies

Calling in Webex (Unified CM) - Internal registration

Carlos Olortiga
Level 1
Level 1

‎08-27-2021 08:35 PM

Hi Guys,

Im deploying Calling in Webex (Unified CM), we have Jabber solution deployed and working fine. So I can register my Webex Client in CUCM from Internet through the Expressways (MRA) but when I try to register in the internal network, it doesnt work. I think it is because Webex client ask for an public certificate, but CUCM servers dont have it.

I am right? Is a public certificate required? Is there an option to Webex client accept the autosigned certificates?

Thanks

Carlos Olórtiga

Labels:
7 Replies 7

Vaijanath Sonvane
VIP Alumni
VIP Alumni

‎09-09-2021 06:18 AM

Hi @Carlos Olortiga,

Please review certificate requirement section from deployment guide:

https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cloudCollaboration/wbxt/ucmcalling/unified-cm-wbx-teams-deployment-guide/unified-cm-wbx-teams-deployment-guide_chapter_011.html#id_107860 

This should resolve your issue.

 

 

Please rate helpful posts and if applicable mark "Accept as a Solution".
Thanks, Vaijanath S.

0 Helpful

tschafferx
Level 1
Level 1

‎09-06-2021 01:00 AM - edited ‎09-08-2021 11:28 PM

Hi Carlos,

 

you could try the following:

 

To establish a secure connection with Unified CM, Webex validates the certificate that is presented by the server during the connection process. Unlike Jabber, Webex does not prompt users with the option to accept an untrusted certificate.

Unified CM must be configured with certificates that Webex can validate, preferably a CA root that signed the tomcat certificate (which is known to the operating system that Webex is on, Windows or MacOS by default). or a self-signed trusted certificate (which must be deployed to the OS in advance by the enterprise administrator).

 

I highlighted the interesting part for you. Maybe you don't have the self signed certificate in your local OS trust store. If not you could try to upload it. Of course it is always recommended to deploy CA signed certificates.

 

Regards Thomas

Nithin Eluvathingal
VIP
VIP

‎08-28-2021 05:53 AM

As @Roger Kallberg you don't need to have a public signed certificate.

 

What popup you received, certificate warning or certificate expired message ?  



Response Signature


0 Helpful

Carlos Olortiga
Level 1
Level 1
In response to Nithin Eluvathingal

‎08-28-2021 06:51 AM

I get this message. It is in spanish, It say "No service detected because no acceptable certificate in server"

 

Thanks

Preview file
81 KB

Roger Kallberg
VIP
VIP

‎08-27-2021 11:18 PM

It does not need to have public signed certificate, you can use internally signed certificates. Aka certificates in CM that are signed by an internal CA.

For details on certificate handling please see this document that I wrote on the topic. Cisco UC Certificates Renewal Guide 



Response Signature


0 Helpful

Carlos Olortiga
Level 1
Level 1
In response to Roger Kallberg

‎08-28-2021 06:49 AM

Ok, so certificates signed by an internal CA is acceptable. Are autosigned acceptable too?

Roger Kallberg
VIP
VIP
In response to Carlos Olortiga

‎09-08-2021 01:23 PM

Not sure if I fully understand what you mean by auto signed certificates. Would you mind to please elaborate!



Response Signature


Customers Also Viewed These Support Documents