[cisco-voip] Third Party Softphone w/ TLS
Brian Meade
bmeade90 at vt.edu
Thu Jan 21 17:21:46 EST 2021
I think enabling Digest Authentication on the Phone Security Profile is the
workaround to not need mutual TLS.
Do you have Digest Authentication checked on the Phone Security Profile and
an end user set as the digest user on the phone config and a digest
password configured under the end user?
On Thu, Jan 21, 2021 at 11:56 AM Johnson, Tim <johns10t at cmich.edu> wrote:
> Does anyone have a working configuration of using a third party SIP
> softphone with TLS? I have it working with Cisco phones and Jabber, but am
> trying to get a third party client working. I’m on CUCM 12.0.
>
>
>
> So far, I’m running into an issue with the TLS handshake. The client is
> using TLS 1.0, and I confirmed that my CUCM nodes do support 1.0. I’ve put
> the CallManager cert in the trusted root (local machine) on the Windows
> client. When attempting to register the client, CUCM gives an error “peer
> did not return a certificate.” That led me to think that I would need to
> get a signed cert uploaded as a CM-trust cert. I opened a ticket with TAC
> to ask if that’s the case (would rather not have to do a client cert if I
> don’t need to) and they suggested I may not need one. I haven’t been able
> to get more out of them on this yet (after a week), so I figured I’d ask
> here.
>
>
>
> Tim Johnson
>
> Voice & Video Engineer
>
> Central Michigan University
>
>
> _______________________________________________
> cisco-voip mailing list
> cisco-voip at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-voip
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20210121/14426673/attachment.htm>
More information about the cisco-voip
mailing list