[cisco-voip] Question about CUCM CA-Signed certificates.

Ryan Ratliff (rratliff) rratliff at cisco.com
Sat Sep 28 10:53:07 EDT 2019


Client Auth is required when the cert is used as the client in an mTLS session. For Tomcat I believe this would come up in secure ldap sync/auth, if the ldap server requests the client cert.

-Ryan

On Sep 27, 2019, at 5:56 PM, ROZA, Ariel <Ariel.ROZA at la.logicalis.com> wrote:


Hi, people,

Out of curiosity, does anyone know what´s the specific purpose, in a CUCM cluster, of the “Client Authentication” extensión that we must include in the template used to sign CUCM certificates? Because I am renewing some expired tomcat certificates in a cluster, and those certs only have the “Server Authentication” extensión, instead of both, Server and Client.
And my customer never complained about issues in their setup.

Regards,

Ariel.
_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20190928/c8dde156/attachment.htm>


More information about the cisco-voip mailing list