certs for presence outlook gateway

Unanswered Question
Feb 8th, 2010

Hi all,

I need to know exactly what certs are required for setting up a calendar integration with presence 6.0.4. I've setup the presence gateway but need to know what certs i need to upload.

I've been throught the cisco doco and dont find it that explanatory.

I've tried .pem , .cer and .pfx certs with no go. Do they need the private keys? Do i need the root cert as well?

Can someone also tell me how to get these certs off the exchange server (2003 sp2) as well?

I'm sure this will be an easy one for you guys.

Thks,

Taff

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
htluo Fri, 02/12/2010 - 07:45

You'll need to upload the CA certificates to the CUPS server.  For example, you have an Exchange server with the certificate mail.acme.local.  The certificate was issued by a CA called ca.acme.local.  Then it's the "ca.acme.local" certificate you want to upload.  You should save the certificate in Base-64 format with .cer extension.  You don't need the private key.

Michael

http://htluo.blogspot.com

htluo Fri, 02/12/2010 - 17:48

If you don't have a CA server, you may get the cert from external CA (e.g. Verisign, GeoTrust, etc.).

Or you may use self-signed cert.  Just to make sure you have CA bit enabled in the cert.  Because CUPS won't trust certs without CA bit.

Michael

http://htluo.blogspot.com

htluo Fri, 02/12/2010 - 17:54

Without the cert, we cannot do SSL.

There's no way to encrypt the credential info of the service account.

With the service account, the hacker can read everybody's email (including the CEO/CFO's email).

Michael

clougher01 Fri, 02/12/2010 - 17:56

ok that makes sense. I'll see if i can get a self cert then and try that.

Actions

This Discussion