Guest

Preview Tool

Cisco Bug: CSCur85431 - Intercluster peer certificate status check reports missing a leaf cert

Last Modified

Jan 04, 2016

Products (5)

  • Cisco Unified Communications Manager IM & Presence Service
  • Cisco Unified Communications Manager IM and Presence Service Version 10.5
  • Cisco Unified Communications Manager IM and Presence Service Version 9.1
  • Cisco Unified Communications Manager IM and Presence Service Version 9.0
  • Cisco Unified Communications Manager IM and Presence Service Version 10.0

Known Affected Releases

10.0(1) 10.5(1) 10.5(2) 9.0(1) 9.1(1)

Description (partial)

Symptom:
CUCM IM&P Admin UI Inter-Clustering page reports that for a given peer there is a missing certificate. The missing certificate is a leaf-level certificate, rather than a root or intermediate certificates.

In this particular instance the issue is not service impacting. The physical storage of a peer leaf certificate on the local cluster is not required as the signing certificates are available locally to verify trust. The mis-match error results due to a n internal cache not being updated.

Conditions:
CUCM IM&P is configured with CA-signed certificates and has Inter-Clustered peers.

The issue can occur where for some reason a certificate on a CUCM IM&P server is re-signed and/or re-generated and one of the CUCM IM&P clusters does not process the corresponding change notification which is sent.

Activities which could require a certifcate to re-signed and/or re-generated:
Re-building/Re-installing an CUCM IM&P node
Administrator decides to re-signed and/or re-generated using the OS Admin UI or OS Admin CLI
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.