certs for presence outlook gateway

Unanswered Question
Feb 8th, 2010
User Badges:

Hi all,

I need to know exactly what certs are required for setting up a calendar integration with presence 6.0.4. I've setup the presence gateway but need to know what certs i need to upload.

I've been throught the cisco doco and dont find it that explanatory.

I've tried .pem , .cer and .pfx certs with no go. Do they need the private keys? Do i need the root cert as well?

Can someone also tell me how to get these certs off the exchange server (2003 sp2) as well?

I'm sure this will be an easy one for you guys.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
htluo Fri, 02/12/2010 - 07:45
User Badges:
  • Red, 2250 points or more

You'll need to upload the CA certificates to the CUPS server.  For example, you have an Exchange server with the certificate mail.acme.local.  The certificate was issued by a CA called ca.acme.local.  Then it's the "ca.acme.local" certificate you want to upload.  You should save the certificate in Base-64 format with .cer extension.  You don't need the private key.



htluo Fri, 02/12/2010 - 17:48
User Badges:
  • Red, 2250 points or more

If you don't have a CA server, you may get the cert from external CA (e.g. Verisign, GeoTrust, etc.).

Or you may use self-signed cert.  Just to make sure you have CA bit enabled in the cert.  Because CUPS won't trust certs without CA bit.



clougher01 Fri, 02/12/2010 - 17:52
User Badges:

So without this cert the calendar integration wont work?

htluo Fri, 02/12/2010 - 17:54
User Badges:
  • Red, 2250 points or more

Without the cert, we cannot do SSL.

There's no way to encrypt the credential info of the service account.

With the service account, the hacker can read everybody's email (including the CEO/CFO's email).


clougher01 Fri, 02/12/2010 - 17:56
User Badges:

ok that makes sense. I'll see if i can get a self cert then and try that.


This Discussion