McDewey

Multi-vendor documentation library · semantic search · MCP endpoint at /mcp

Page 36

↗ View in doc context
page
36
source
unity-connection/v15/os-admin/os-admin.md
chunk_id
unity-connection::v15::os-admin::os-admin::31

Cisco Unified Operating System Administration CSRs include extensions that you must include in your request for an application certificate from the CA. If your CA does not support the ExtensionRequest mechanism, you must enable the X.509 extensions, shown as follows: X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Key Usage: Digital Signature, Key Encipherment, Data Encipherment You can generate a certificate signing request (CSR) for your certificates and have them signed by a third party CA with a SHA256 signature. You can then uploads this signed certificate back to Cisco Unified Operating System Administration, allowing for Tomcat and other certificates to be support SHA256. Note Upload Trust Certificate To upload a trust certificate, follow this procedure: Step 1 Navigate to Security > Certificate Management. The Certificate List window displays. Step 2 Click Upload Certificate/Certificate Chain. The Upload Certificate Trust List dialog box opens. Step 3 Select the certificate name from the Certificate Purpose drop-down list. Step 4 Enter the name of the CA root certificate in the Description text box. Step 5 Select the file to upload, click the Browse button and navigate to the file; then, click Open. Step 6 To upload the file to the server, click the Upload button. In case of trust certificate, the system automatically distributes the certificate to other nodes of the cluster. Note Upload Application Certificate Cisco Unified Communications Operating System supports certificates that a third-party CA issues with PKCS#10 Certificate Signing Request (CSR). Step 1 Generate a CSR on the server. Step 2 Download the CSR to your PC. Step 3 Use the CSR to obtain an application certificate from a CA or PKCS#7 format certificate chain, which may contain application certificate along with CA certificate. Step 4 Obtain the CA certificate or certificate chain. To upload tomcat application certificate, select tomcat from Certificate Purpose list. To upload ipsec application certificate, select ipsec from Certificate Purpose list. To upload tomcat-ECDSA application certificate, select tomcat-ECDSA from Certificate Purpose list. Cisco Unified Communications Operating System Administration Guide for Cisco Unity Connection Release 15 30 Security Upload Trust Certificate