Guest

Preview Tool

Cisco Bug: CSCvu22428 - Webex Teams Android Client: Restriction on self-signed certificates for SSO login page

Last Modified

Aug 31, 2020

Products (1)

  • Cisco Webex Teams

Known Affected Releases

unspecified

Description (partial)

Symptom:
When attempting to login to the Webex Teams Android client, the user receives a popup stating:

"Potential security risk. The SSL certificate provided is not from a trusted authority. Please contact your IT administrator."

The user is unable to bypass this popup and cannot login.

The Android client logs may show:

X509Util: Failed to validate the certificate chain, error: java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.

Conditions:
All of the following are true:
1. The user is using the Webex Teams Android client
2. The organization is configured to authenticate Webex Teams users using Single Sign On (SSO)
3. The organization's SSO Identity Provider (IdP) either: 
a. uses a self-signed certificate on the login page or 
b. the IdP is using a privately or publicly signed certificate where the entire certificate's trust chain is not present on the device
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.