Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

CUCM CAPF certificates on 8.x. 2048bit? SHA-2

Hi,

From what I can see the default CAPF certificate on a 8.x CUCM is 1024bit signed with SHA-1. As phones can do 2048bit can I also put the the CAPF certificate to this higer security standard? In other words, can CAPF generate a 2048bit certificate signed with a more up to date SHA-2?

-Danny

  • IP Telephony
Everyone's tags (3)
1 REPLY
New Member

Re: CUCM CAPF certificates on 8.x. 2048bit? SHA-2

now 18 months later I am working through the same issue on 8.5(1).

The service paramaters let you raise the key size to 2048, but this only (appears to) affect the RSA handshake for encrypted transmission of the same old cert - with modulus of 1024 .  I still can't seem to generate a .csr to pull a 2048 bit cert from our 3rd party CA.

Any ideas anyone?

Cheers,

799
Views
0
Helpful
1
Replies