[cisco-voip] Microsoft Certificate Authority? Certserv ?

Jason Aarons (AM) jason.aarons at dimensiondata.com
Tue Jun 10 20:27:19 EDT 2014


Is anyone a guru at Microsoft PKI in a Windows Domain and Pushing certs via GPO?

A customer signed a CallManager Server Certificate with their  Private Domain Root CA.  They send me back the tomcat.cer and other need .cer  and the DomainRootCa.cer that chains them up.  I installed them all fine.

After that  I go to any server webpage and I get a warning error in both IE and Firefox and application that it's not trusted.

Does the server certificates he signed need to get pushed to all the Windows 7 PCs via GPO ?  All the PCs supposedly already have the "Private RootCA" but we didn't push anything else in AD.

If I manually install his Private Domain Root CA into Windows 7 corporate image the problem goes away and it chains up.  In short the chaining up failing but I'm not clear why.

Example screen shots
Jabber client message after clicking on show;

[cid:image001.png at 01CF84E9.97F58490]

https://servername.fqnd.com for IMP


[cid:image002.png at 01CF84EA.5EE085A0]


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20140611/d84cf90e/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 18118 bytes
Desc: image001.png
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20140611/d84cf90e/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 86253 bytes
Desc: image002.png
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20140611/d84cf90e/attachment-0001.png>


More information about the cisco-voip mailing list