McDewey

The following table is applicable only until Release 15SU4. Important Table 8: Cisco Unified Communications Manager CSR Key Usage Extensions (applicable only until 15SU4) Key Usage Extended Key Usage Multi server Key Agreement Key Cert Sign Data Encipherment Key Encipherment Digital Signature IP security end system (1.3.6.1.5.5.7.3.5) Client Authentication (1.3.6.1.5.5.7.3.2) Server Authentication (1.3.6.1.5.5.7.3.1) Y N Y Y Y Y CallManager CallManager-ECDSA Y N Y Y Y N CAPF (publisher only) Y Y Y Y Y Y N ipsec Y N Y Y Y Y tomcat tomcat-ECDSA Y Y Y Y Y N TVS The following table is applicable only until Release 15SU4. Important Ensure that ‘Data Encipherment’ bit is not changed or removed as part of the CA-signing certificate process. Note Table 9: IM and Presence Service CSR Key Usage Extensions (applicable only until 15SU4) Key Usage Extended Key Usage Multi server Key Agreement Key Cert Sign Data Encipherment Key Encipherment Digital Signature IP security end system (1.3.6.1.5.5.7.3.5) Client Authentication (1.3.6.1.5.5.7.3.2) Server Authentication (1.3.6.1.5.5.7.3.1) Y N Y Y Y Y N cup cup-ECDSA Y N Y Y Y Y Y cup-xmpp cup-xmpp-ECDSA Y N Y Y Y Y Y cup-xmpp-s2s cup-xmpp-s2s-ECDSA Y N Y Y Y Y N ipsec Y N Y Y Y Y tomcat tomcat-ECDSA Security Guide for Cisco Unified Communications Manager, Release 15 and SUs 45 Basic System Security Certificate Signing Request Key Usage Extensions