[cisco-voip] Corporate Directory - host not found - Reach out to the Puck

Florian Kroessbacher florian.kroessbacher at gmail.com
Thu Feb 2 15:05:34 EST 2012 

one week or two ago we have a similar problem, our tomcat certificates look
wrong in the database ( run sql select * from certificate(s)) and when u
download it from the cucm server os admin page - certificate management.
when u connect to the cucm on https all look good. on the phone u see that
it connects to the tvs and get a error back with i think code 0 and says
its not authenticated.
so i've generate knew ones on all servers in the cluster. this fixed it for
me.
the certificates grow from version 6 throug 6.1,7.1 now on 8.5, maybe
something was wrong with any upgrade we have done.

--
Florian Kroessbacher

Am 02.02.2012 um 20:57 schrieb "Jason Aarons (AM)" <
jason.aarons at dimensiondata.com>:

Start with checking the http://phoneip and the log files there, does the
phone have any ITL errors or missing TFTP Server 1 entries? Is CDP running
on port on switch, dot1x, port-security?



Dejavue from current project with SCCP 7965s 9.2SR2S and CallManager
8.5.1SU1.



Most were network issues.  Reminder that starting with 7x the Corporate
Directory is under Phone Services, are you using DNS or IP in that entry?



*From:* cisco-voip-bounces at puck.nether.net [mailto:
cisco-voip-bounces at puck.nether.net] *On Behalf Of *Wes Sisk
*Sent:* Thursday, February 02, 2012 2:52 PM
*To:* Gregory Wenzel
*Cc:* cisco-voip at puck.nether.net
*Subject:* Re: [cisco-voip] Corporate Directory - host not found - Reach
out to the Puck





What version of CUCM?



Starting in 8.x all URL's are https.  This requires ITL on phone in sync
with ITL on server. Phone contacts TVS on server to verify certificate
trust.



Is the phone attempting to access the HTTPS port? (packet capture)

Does the web server respond with syn-ack? (packet capture)

is SSL negotiation successful? ( packet capture and TVS logs)





/wes



On Feb 2, 2012, at 2:05 PM, Gregory Wenzel wrote:





Weird stuff on my home lab. My 7945, 7970 and 7961G-GE phones all show
Corporate Directory as host not found … and I have WEB enabled for the
phones, but cannot web into them http://ip>phone.addr/



Unity Connection is not running and Due to cpu and avail memory I can only
run 1xCUCM/1xUCCX Premium/1xWin2003Svr/1xWinXp workstation for CAD and ip
communicator testing.



Not using DNS and there is no domain Config on cucm.

No LDAP integration

I reset/restarted tomcat in Serviceability

I reset/restarted TVS in Serviceability

Have device pool, dialplan and other essentials set up on cucm so my UCCX
lab can function.

Even rebooted the publisher

In OS admin is regenerated the TVR certs

In command line I ran “Show itl” and TVS certs are registered and in sync

The URL for Directory services is in the enterprise services section

I have no firewall between the router that’s the dhcp server and the phones

I do have a win2003 server acting as my smtp, dns, domain server but cucm
is not using dns

The phones work, they have a local

2811 is the Dhcp server

The phones communicate, the scripts I am writing do work with the phones.

I removed the secure URLs from the enterprise services section as suggested
from some of the blogs on CCO Communities.

My 7945, 7970 and 7961G-GE phones all show Corporate Directory as host not
found

I do have routing turned on in my 2811 vgw. The phones see my publisher as
the primary tftp server

I have looked over and over through all the blogs and searched Cisco and I
think I covered just about everything.



This is NFR branded software:

System version: 8.6.2.20000-2
VMware Installation: 1 vCPU Intel(R) Xeon(R) CPU E3113 @
3.00GHz, disk 1: 80Gbytes, 4096Mbytes RAM



7945 firmware - SCCP45.9-2-1S

7970 firmware - SCCP70.9-2-1S

7961G-GE – firmware - SCCP41.9-2-1S



I am upgrading to 9-2-3 on all three phones see if that helps.



What else am I missing?



Somewhat embarrassing but I wanted to reach out to the puck see what comes
back/



Next will be to capture packets on the end of the phone..





TIA J



Greg








This message w/attachments (message) is solely for the use of the intended
recipient(s) and may contain information that is privileged, confidential
or proprietary. If you are not an intended recipient, please notify the
sender, and then please delete and destroy all copies and attachments, and
be advised that any review or dissemination of, or the taking of any action
in reliance on, the information contained in or attached to this message is
prohibited. Unless specifically indicated, this message is not an offer to
sell or a solicitation of any products.
  ­­  _______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip





itevomcid

_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20120202/8e73fd31/attachment.html>

More information about the cisco-voip mailing list