intrigrant
Systems Engineer
Why does that *****ing UCM module rejects all browsers with a "untrusted certificate" error it is a 9.1.8nd yes it is installed per documentation.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
I know I have insuffient certificates but... 2
- Thread starter intrigrant
- Start date
- Status
holdmusic34
Vendor
Because avaya don't pay the licensing authority for a generic SSL anymore. You're expected to do it yourself.
Don't bother using an sbc to generate a self signed for you. Those ones are crap
You can get around it with 'run anyway'.
Keeping your caffeine levels up also helps on a Monday mate.
Q: why are pirates so mean?
A Because they arrrrr.
Don't bother using an sbc to generate a self signed for you. Those ones are crap
You can get around it with 'run anyway'.
Keeping your caffeine levels up also helps on a Monday mate.
Q: why are pirates so mean?
A Because they arrrrr.
holdmusic34
Vendor
Shit i'm late for work!
Q: why are pirates so mean?
A Because they arrrrr.
Q: why are pirates so mean?
A Because they arrrrr.
amriddle01
Programmer
Certificates are just a way of people who you have no interest in dealing with (but are forced to) making recurring revenue off you, it's all nonsense really 
-
2
- Thread starter
- #9
intrigrant
Systems Engineer
I've sorted it out. more or less.
It is not all Avaya to blame, each browser has another way of dealing with certificates it seems.
FYI : I have removed all browsers from my PC and only use Mozilla Firefox.
Firefox just refuses to load the certificate provided by the UCM (Avaya documented how to import a certificate). period.
Now I imported the certificate through the Windows configuration panel > Internet settings and the same certificate is loaded AND used by Firefox.
Who is insane here?
I did not test any other browser as I like Firefox most and I just do not trust Google or Micro$oft when it comes to privacy (can I trust Firefox? Probably not but I trust them more as the others).
PS, a collegue use Google Chrome and had no problems with the certificate.
Damn what was I frustrated yesterday...
It is not all Avaya to blame, each browser has another way of dealing with certificates it seems.
FYI : I have removed all browsers from my PC and only use Mozilla Firefox.
Firefox just refuses to load the certificate provided by the UCM (Avaya documented how to import a certificate). period.
Now I imported the certificate through the Windows configuration panel > Internet settings and the same certificate is loaded AND used by Firefox.
Who is insane here?
I did not test any other browser as I like Firefox most and I just do not trust Google or Micro$oft when it comes to privacy (can I trust Firefox? Probably not but I trust them more as the others).
PS, a collegue use Google Chrome and had no problems with the certificate.
Damn what was I frustrated yesterday...
- Thread starter
- #11
- Thread starter
- #13
intrigrant
Systems Engineer
Tommorrow after 15:00 maybe? I have a appointment in the hospital at 14:00, if it doesn't take too long i'll drive by.
amriddle01
Programmer
This is like listening to two old ladies at the bus stop....
- Thread starter
- #16
amriddle01
Programmer
No, you don't sound that macho I'm afraid, that would involve beers
I am going to fully lay the blame at Firefox here
The took a decision to refuse completely unsigned certificates because of the number of dodgy websites using them*.
in the process they failed to take into consideration that many Network devices use such certificates & cannot be upgraded.
Whilst I appreciate their attempt to protect naive users, locking it down totally with no means to override is inconsiderate to say the least.
Chrome has moved down the same path put has at least kept an override available made the safe option the on that the "Just Click OK" users would select by default .
Perhaps letsencrypt.org can be used to resole the problem
*I think the full explanation may be a bit more complicated but it does not make much difference to the end result.
Do things on the cheap & it will cost you dear
The took a decision to refuse completely unsigned certificates because of the number of dodgy websites using them*.
in the process they failed to take into consideration that many Network devices use such certificates & cannot be upgraded.
Whilst I appreciate their attempt to protect naive users, locking it down totally with no means to override is inconsiderate to say the least.
Chrome has moved down the same path put has at least kept an override available made the safe option the on that the "Just Click OK" users would select by default .
Perhaps letsencrypt.org can be used to resole the problem
*I think the full explanation may be a bit more complicated but it does not make much difference to the end result.
Do things on the cheap & it will cost you dear
montyzummer
IS-IT--Management
I dont know if you guys use system manager but you can use that as a CA
ACSS (UC/SBCE/SM/SME)
Not that they mean a thing anymore , get a brain dump pass the test crash the system.
ACSS (UC/SBCE/SM/SME)
Not that they mean a thing anymore , get a brain dump pass the test crash the system.
- Status
Similar threads
- Question
- Locked
- Question