Guest

Preview Tool

Cisco Bug: CSCvh69974 - UCCX should include a SAN in its default self signed cert

Last Modified

Mar 12, 2019

Products (1)

  • Cisco Unified Communications Manager (CallManager)

Known Affected Releases

none

Description (partial)

Symptom:
UCCX should include a SAN in its default self signed cert. As of chrome version 58, google no longer recognizes the CN= or common name in a certificate.

"The compatibility risk for removing commonName is low. RFC 2818 has deprecated this for nearly two decades, and the baseline requirements (which all publicly trusted certificate authorities must abide by) has required the presence of a subjectAltName since 2012. Firefox already requires the subjectAltName for any newly issued publicly trusted certificates since Firefox 48."

Conditions:
n/a
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.