[cisco-voip] Removing certificates by hand

Matt Jacobson m4ttjacobson at gmail.com
Thu Apr 11 13:07:52 EDT 2019


There are a few different bug id’s floating around where the expired cert
is not deleted and does not show up in certificate management. If you can’t
find them from CLI (see Anthony’s suggestions) or web but still receive
alerts, then TAC can intervene with root user.

On Thu, Apr 11, 2019 at 20:37 Anthony Holloway <
avholloway+cisco-voip at gmail.com> wrote:

> I'm not saying this is what's happening, but the node which sent the
> alert, could be different from the node with the expired cert on it.  Maybe
> just double check the alert email.  Alternatively, just look on the other
> nodes in that cluster for the cert in question.  Keeping in mind that IM&P
> nodes are alerted on as a part of CUCM RTMT alerting.
>
> Lastly, there is a show cert CLI command to try out:
>
> show cert list trust
>
> Then if you want to view the contents of one of those certs:
>
> show cert trust ipsec-trust/cucmsub1.example.com.pem
>
> On Wed, Apr 10, 2019 at 10:54 AM ROZA, Ariel <Ariel.ROZA at la.logicalis.com>
> wrote:
>
>> Yes. The node matches the one in the alert
>>
>> Obtener Outlook para Android <https://aka.ms/ghei36>
>>
>> ------------------------------
>> *From:* Brian Meade <bmeade90 at vt.edu>
>> *Sent:* Wednesday, April 10, 2019 12:46:24 PM
>> *To:* ROZA, Ariel
>> *Cc:* cisco-voip (cisco-voip at puck.nether.net)
>> *Subject:* Re: [cisco-voip] Removing certificates by hand
>>
>> Are you looking on the right node that alerted?  I wouldn't expect this
>> to be in the DB either if it doesn't display in OS Admin.
>>
>> On Wed, Apr 10, 2019 at 11:23 AM ROZA, Ariel <Ariel.ROZA at la.logicalis.com>
>> wrote:
>>
>>> I am receving RTMT alarms about an expired tomcat-trust certificate, but
>>> the certificate is not listed in the Certificate Management page. The cert
>>> was replaced by a new certificate that is present in the list, nonetheless.
>>>
>>>
>>>
>>> Can I remove the old certificate by hand through the CLI? Or there is
>>> something to be done at the database level?
>>>
>>>
>>>
>>> Thanks.
>>>
>>>
>>>
>>> *Ariel Roza*
>>> *Support & Maintenance* *Engineer** | Latam*
>>>
>>> t: +54 11 5282-0458 / c: +54 11 5017-4417 / webex:
>>> https://logicalis-la.webex.com/join/ariel.roza
>>> <https://nam01.safelinks.protection.outlook.com/?url=https%3A%2F%2Flogicalis-la.webex.com%2Fjoin%2Fariel.roza&data=02%7C01%7CAriel.ROZA%40la.logicalis.com%7C0ff6bbc519b04c708fb008d6bdcbb99d%7C2e3290cb8d404058abe502c4f58b87e3%7C0%7C0%7C636905080032382303&sdata=pHnHCderd16daeBIjGy08RjApmMvXAMiIJqpEEo0WHk%3D&reserved=0>
>>>
>>> Av. Belgrano 955
>>> <https://maps.google.com/?q=Av.+Belgrano+955&entry=gmail&source=g> –
>>> Piso 20 – CABA – Argentina – C1092AAJ
>>>
>>> www.la.logicalis.com
>>> <https://nam01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.la.logicalis.com%2F&data=02%7C01%7CAriel.ROZA%40la.logicalis.com%7C0ff6bbc519b04c708fb008d6bdcbb99d%7C2e3290cb8d404058abe502c4f58b87e3%7C0%7C0%7C636905080032382303&sdata=YTBpZjgdSdklZtSzlFjTzC0967Bc53l5nwVYsi9XpbU%3D&reserved=0>
>>>
>>> *Business **and technology working as one*
>>>
>>> [image: cid:image006.png at 01D298D0.103CDF50][image:
>>> cid:image007.png at 01D47689.672FCCD0]
>>> <https://nam01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.instagram.com%2Flogicalislatam%2F&data=02%7C01%7CAriel.ROZA%40la.logicalis.com%7C0ff6bbc519b04c708fb008d6bdcbb99d%7C2e3290cb8d404058abe502c4f58b87e3%7C0%7C0%7C636905080032392307&sdata=WbGsKZ%2FJNVKQlK8q2yMOHYxrgiuwuORhXcUFJjGFhm8%3D&reserved=0>[image:
>>> cid:image005.png at 01D47689.672FCCD0]
>>> <https://nam01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.facebook.com%2Flogicalislatam&data=02%7C01%7CAriel.ROZA%40la.logicalis.com%7C0ff6bbc519b04c708fb008d6bdcbb99d%7C2e3290cb8d404058abe502c4f58b87e3%7C0%7C0%7C636905080032402320&sdata=uSH2izOq9bpDMnHc%2F0NlajVktZiB4SGCsDmctkLLLFM%3D&reserved=0>[image:
>>> cid:image006.png at 01D47689.672FCCD0]
>>> <https://nam01.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftwitter.com%2Flogicalislatam&data=02%7C01%7CAriel.ROZA%40la.logicalis.com%7C0ff6bbc519b04c708fb008d6bdcbb99d%7C2e3290cb8d404058abe502c4f58b87e3%7C0%7C0%7C636905080032412328&sdata=CN4Y8DujlkGTUYV4yiTsUPHPwHTu%2BFcUAnOIqG1qOy0%3D&reserved=0>[image:
>>> cid:image008.png at 01D47689.672FCCD0]
>>> <https://nam01.safelinks.protection.outlook.com/?url=https%3A%2F%2Far.linkedin.com%2Fcompany%2Flogicalis-latam&data=02%7C01%7CAriel.ROZA%40la.logicalis.com%7C0ff6bbc519b04c708fb008d6bdcbb99d%7C2e3290cb8d404058abe502c4f58b87e3%7C0%7C0%7C636905080032412328&sdata=D9hQo66WdXezKFs%2BDjRYrfqIIj9TQxIMwfTgf8HfwLU%3D&reserved=0>[image:
>>> cid:image009.png at 01D47689.672FCCD0]
>>> <https://nam01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.youtube.com%2Flogicalislatam&data=02%7C01%7CAriel.ROZA%40la.logicalis.com%7C0ff6bbc519b04c708fb008d6bdcbb99d%7C2e3290cb8d404058abe502c4f58b87e3%7C0%7C0%7C636905080032422333&sdata=cVdIlNay4dXLse5eo81ChFLGmGXxZA6hwK6mc3NHGAw%3D&reserved=0>
>>>
>>> [image: cid:image010.jpg at 01D47689.672FCCD0]
>>>
>>> Logicalis Argentina S.A. solo puede ser obligado por sus representantes
>>> legales conforme los límites establecidos en el acto constitutivo y la
>>> legislación en vigor.
>>>
>>> El contenido del presente correo electrónico e inclusive sus anexos
>>> contienen información confidencial.
>>>
>>> El mismo no puede ser divulgado y/o utilizado por cualquiera otro
>>> distinto al destinatario, ni puede ser copiado de cualquier forma
>>>
>>>
>>> _______________________________________________
>>> cisco-voip mailing list
>>> cisco-voip at puck.nether.net
>>> https://puck.nether.net/mailman/listinfo/cisco-voip
>>> <https://nam01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fpuck.nether.net%2Fmailman%2Flistinfo%2Fcisco-voip&data=02%7C01%7CAriel.ROZA%40la.logicalis.com%7C0ff6bbc519b04c708fb008d6bdcbb99d%7C2e3290cb8d404058abe502c4f58b87e3%7C0%7C0%7C636905080032422333&sdata=hR%2FixRC88yoz8difDEo%2BciLq%2BB9nVn4k4T3JaWTghW8%3D&reserved=0>
>>>
>> _______________________________________________
>> cisco-voip mailing list
>> cisco-voip at puck.nether.net
>> https://puck.nether.net/mailman/listinfo/cisco-voip
>>
> _______________________________________________
> cisco-voip mailing list
> cisco-voip at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-voip
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image004.png
Type: image/png
Size: 6706 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image005.png
Type: image/png
Size: 1600 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image006.png
Type: image/png
Size: 502 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment-0002.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image010.jpg
Type: image/jpeg
Size: 2051 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image009.png
Type: image/png
Size: 493 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment-0003.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image008.png
Type: image/png
Size: 776 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment-0004.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image011.jpg
Type: image/jpeg
Size: 1229 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment-0001.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image007.png
Type: image/png
Size: 942 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment-0005.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 12524 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190411/5e58f8a3/attachment-0006.png>


More information about the cisco-voip mailing list