Meeting client does not open because of certificate

Endorsed Question
Jul 3rd, 2014
User Badges:

Hello,

I recently installed and configured a Cisco Webex Meetings Server for 50 users and only for internal meetings (there is not an IRP).

Because the client is in the financial sector (bank), user's computers have lots of restrictions to prevent users from installing "undesired and unsecure" software.

Webex Meetings Server client requires the installation of a private certificate (CAcert.pem) that is considered as unsecure. 

Is there anything I can do to install a validate certificate into the webex server? according to the administration guide I see that I could install a signed certificate but I understand this would be a new certificate the bank should generate, I mean, not an existing one.

 

They mentioned they already have some certificates they use on the computers so they would like us to upload one of those. I'm pretty sure this won't work and they would need to create a new one and upload that one.

 

Does anybody know?

 

Regards,

 

Daniel G.

VIP Endorsed by David Hailey
dpetrovi about 3 years 1 month ago

Hi Daniel,

 

If the customer has Wildcard SSL cert installed on their network for *.domain.com (where domain.com is the bank's domain), and if your CWMS VM IP/FQDN, Admin Site URL and WebEx Site URL all belong to this same domain, you can use the Wildcard SSL cert and the corresponding private key provided by the bank to install it on CWMS.

 

If the bank doesn't use Wildcard SSL cert, they will either need to generate CSR on CWMS and obtain the appropriate SSL cert signed by public CA, or to make things work with the self-signed SSL certs auto-generated on CWMS, the bank will have to insure those self-signed SSL certs are distributed to the end user community and added to the trust zone in their web browsers. 

 

I hope this will help you in resolving your issue.

 

-Dejan

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
dpetrovi Mon, 07/07/2014 - 04:27
User Badges:
  • Cisco Employee,

Hi Daniel,

 

If the customer has Wildcard SSL cert installed on their network for *.domain.com (where domain.com is the bank's domain), and if your CWMS VM IP/FQDN, Admin Site URL and WebEx Site URL all belong to this same domain, you can use the Wildcard SSL cert and the corresponding private key provided by the bank to install it on CWMS.

 

If the bank doesn't use Wildcard SSL cert, they will either need to generate CSR on CWMS and obtain the appropriate SSL cert signed by public CA, or to make things work with the self-signed SSL certs auto-generated on CWMS, the bank will have to insure those self-signed SSL certs are distributed to the end user community and added to the trust zone in their web browsers. 

 

I hope this will help you in resolving your issue.

 

-Dejan

Actions

This Discussion