Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

devicelistx.asp The certificate authority is invalid or incorrect

Hello

After some modifications of the file "getdeviceip.asp", I at the following point:

(1) If I leave the line "xmlhttp.open("GET ", protocol +"://" + callManager + "/CCMAdmin/reports/devicelistx.asp", false);"

I receive the error

msxml4.dll error ' 80070005 '

Acc?s refus?. (Access denied)

(2) If I replace:

+ callmanager +

by:

+ "callmanager" +

With callmanager + IP in my host file

I receive the error

msxml4.dll error '80072f0d'

The certificate authority is invalid or incorrect

An idea?

Thank you

4 REPLIES
New Member

Re: devicelistx.asp The certificate authority is invalid or inco

Hello,

if you are using CCM 4.1 or above, you need to use https.

Rgds,

JM Lacoste

New Member

Re: devicelistx.asp The certificate authority is invalid or inco

I use https ...

function getDeviceList(callManager, userID, password, protocol) {

var xmlhttp = Server.CreateObject ("MSXML2.ServerXMLHTTP.4.0");

var authstring = text2base64(userID + ":" + password);

var xmlDoc = Server.CreateObject("MSXML2.DOMDocument.4.0");

xmlDoc.async = false;

xmlhttp.open("GET", "https://callmanager/CCMAdmin/reports/devicelistx.asp", false);

xmlhttp.setRequestHeader("Authorization", "Basic " + authstring);

xmlhttp.setRequestHeader("Connection", "close");

xmlhttp.send();

xmlDoc.loadXML(xmlhttp.responseText);

Application("deviceList") = xmlDoc;

}

Where protocol is https

I need to change parameter in ccm ? (IIS)

New Member

Re: devicelistx.asp The certificate authority is invalid or inco

Well, I have the same problem...

I ask in other forums and emails, and some guy tell me this:

---------------------

As you probably already know, your error is coming from URLMON (not XMLHTTP), it is INET_E_SECURITY_PROBLEM.

Trying to pass a username and password using the "Basic" authentication scheme (thats what you are doing right?) through URLMON by HTTP header will not work. MSXML will not set the user information this way. You should pass the username and password to the XMLHTTP.open method, rather than in a request header. See

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/xmlsdk/html/52aaf5ff-e302-4490-821a-cb3a085fe5ee.asp

However, also because "Basic" authentication is not generally encrypted, you should be using only SSL here.

-------------------

I change the code to:

xmlhttp.Open "GET", "https://10.0.0.10/CCMAdmin/Reports/devicelistx.asp", False , userID, password

But doesn't work... this is very frustrating...

Without the IPs from the phones, we're very limitated...

Jorge

New Member

Re: devicelistx.asp The certificate authority is invalid or inco

Well,

I finally make it work, but with no "elegant" method.

I just disable the "Require Secure Channel (SSL)" box on CCM IIS. And enable "Basic Authentication".

I'm not happy with this, because, i don't want to change IIS configuration in our future clients.

But for now, my CCM is safe, bacause if i don't have any response for one more week, i'll destroy it with a hammer.. :P (just joking)

1511
Views
0
Helpful
4
Replies