I have researched this and have fixed the certificate warning but when it tells you the system will be unresponsive for 5 minutes is this only for administrating the system only? or does it affect the end users being able to make calls etc... I have only done this remote so I have had zero complaints but want to be positive as I need to address our hospital customers, thanks in advance.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
security certificate will expire in xxx days 11
- Thread starter joe2938
- Start date
- Thread starter
- #23
- Thread starter
- #25
gntsfan8690
Vendor
I'm seeing on a 500 that is an expansion in a Server Edition solution, Regenerate is not available, only Delete. I've done it to a couple so far with success. I didn't notice any disruption of service in terms of a disconnect from SSA like I did last week when I regenerated the cert for a new 500 during prep.
With all of these, after I saved from security settings, I went back in and viewed the certificate and now it's set to expire in 2024.
With all of these, after I saved from security settings, I went back in and viewed the certificate and now it's set to expire in 2024.
-
1
- #27
intrigrant
Systems Engineer
Just regenerate the license as documented is the best and final solution.
And yes disabling the certificate check in manager will stop the popup warning also as documented.
And yes disabling the certificate check in manager will stop the popup warning also as documented.
I have searched multiple threads on this issue and have contacted several support contacts, I cannot get a clear answer on exactly what happens if the certificate isn't renewed. We have installed a ton of IPO's in the last 7 years and there is a high probability that I miss a system or two before 12/31/17. Does anyone know what exactly will be effected? Can I still renew the certificate after the deadline? Will I have issues with SCN and OneX?
-
1
- #31
Kind of obvious. If the certificate expires then any connections configured to use certificate checks will fail. That can be IP Office Manager to IP Office connections, IP phone to IP Office connections. Down to you to know if you've configure any secure connections, if not then you can ignore the warnings though it is easy to just generate a new certificate.
Stuck in a never ending cycle of file copying.
Stuck in a never ending cycle of file copying.
That's what I was looking for, thanks. Have a star. Don't get me wrong the process is simple and quick. The issue for me is having to remote into, or travel to site for, around 100 IPO's. My customers are going to have to pay for this work. I cant just do it for free.
Sorry... But you can't have your customer to pay the bill if you didn't renew the certificate after initial setup. If you did and the seven years of validity are over it is fair to let him pay the bill. But if the cert becomes invalid after only one year after initial setup there is no reason for the customer to pay.
Best would be to sell him an upgrade or additional hardware or feature and do the license renewal then...
Best would be to sell him an upgrade or additional hardware or feature and do the license renewal then...
100 IPO's
I have nearer 2000 that could be affected by this, I simply reset the certificate when I access the system for other reasons. It is not a if it takes any great amount of time.
I estimate that 90% of those systems probably wont be affected if the licence expires anyway.
Do things on the cheap & it will cost you dear
I have nearer 2000 that could be affected by this, I simply reset the certificate when I access the system for other reasons. It is not a if it takes any great amount of time.
I estimate that 90% of those systems probably wont be affected if the licence expires anyway.
Do things on the cheap & it will cost you dear
Hi,
We have a customer who want toi use his own certificate he bought.
We have loaded it from the security settings, but manager still complain about certificate will expire.
Can we use a buyed certificate ?
What's the process to load it ?
ACIS - ACSS
We have a customer who want toi use his own certificate he bought.
We have loaded it from the security settings, but manager still complain about certificate will expire.
Can we use a buyed certificate ?
What's the process to load it ?
ACIS - ACSS
They can use their own certificate fine, but the about to expire auto-generated certificate will always be their in the system regardless of it being used or not. The fact that you are being prompted implies it is being used. How to use a 3rd-party one, read the manuals and employ someone who knows certificates.
Stuck in a never ending cycle of file copying.
Stuck in a never ending cycle of file copying.
-
1
- #37
holdmusic34
Vendor
The PSN related to the IP500V2 certificate expiry has been updated, it has additional information which includes seeing the alarm on the handset.
The PSN is available at the original location of:
daddy? are you doing blah blah blah things again?
The PSN is available at the original location of:
daddy? are you doing blah blah blah things again?
Just went through this process. Tried using Manager / Security Settings and it would not work. Went in via Web Manager and regenerated. All solved.
I have used a 3rd party certificate on another site and followed the guidelines as per ipo_security_guidelines
and still had a lot of difficulty. The 3rd party asked for CSR details to be changed twice and the returned certificates were not in the correct format as delivered but could be downloaded from the 3rd party's web page.
All this stuff really strained the brains of an old phone guy.
I have used a 3rd party certificate on another site and followed the guidelines as per ipo_security_guidelines
and still had a lot of difficulty. The 3rd party asked for CSR details to be changed twice and the returned certificates were not in the correct format as delivered but could be downloaded from the 3rd party's web page.
All this stuff really strained the brains of an old phone guy.
RichTanner
Vendor
On Essential no problem, on Basic had to go in through DTE port and resetall to lose warning. I removed security on basics and could not log back in. Had to recheck security and then do the DTE port thing. After the date expires I think the only way to be able to log in will be resetall through the DTE port. Not sure
-
1
- #40
You have a couple options with basic.
1) You can back everything up, switch to standard, regenerate the certificate, and then switch back to basic and restore everything.
2) You can do a securityresetall through DTE port. Newer versions want to then change passwords from defaults and most people I know using basic have to have passwords default or they are lost.
3) You can simply turn off security certificate checks and secure communications in manager. Basic mode should not be using that certificate for anything but manager.
4) Stop using basic mode cause it sucks... that is always my first preference.
The truth is just an excuse for lack of imagination.
1) You can back everything up, switch to standard, regenerate the certificate, and then switch back to basic and restore everything.
2) You can do a securityresetall through DTE port. Newer versions want to then change passwords from defaults and most people I know using basic have to have passwords default or they are lost.
3) You can simply turn off security certificate checks and secure communications in manager. Basic mode should not be using that certificate for anything but manager.
4) Stop using basic mode cause it sucks... that is always my first preference.
The truth is just an excuse for lack of imagination.
- Status
Similar threads
- Locked
- Question
