Is tomcat-ECDSA required in order to use signed certificates on the live data?
From: cisco-voip [mailto:[email protected]] On Behalf Of Anthony Holloway Sent: Tuesday, November 15, 2016 4:44 PM To: Randall (Randy) Raitz <[email protected]> Cc: [email protected] Subject: Re: [cisco-voip] UCCX 11.5 Upgrade Disaster It was version 11.5 which brought Tomcat to ECDSA certs and is causing those new challenges, so you wouldn't have seen the same issues as Greg. "Note: When you use UCCX 11.5 and later, there is a new certificate for tomcat-ECDSA. When you use CA signed certificates, ensure that the CSR is downloaded for this certificate as shown previously and the application certificate for tomcat-ECDSA is uploaded into the tomcat-ECDSA as explained in the previous procedure. This is required for the Live Data functionality which uses Socket IO from UCCX 11.5" Source: http://www.cisco.com/c/en/us/support/docs/customer-collaboration/unified-contact-center-express/118855-configure-uccx-00.html On Tue, Nov 15, 2016 at 1:05 PM, Randall (Randy) Raitz <[email protected]<mailto:[email protected]>> wrote: We didn’t have those failures, though we took call manager , IM&P, and unity connection to 11.5 and UCCX to 11.0.1 several weeks ago. I believe at the time, there was not a compatible version of UCCX to go to 11.5 with, but the 11.0.1.10000-75 was listed as a supported matrix. From: cisco-voip [mailto:[email protected]<mailto:[email protected]>] On Behalf Of Ayoub,Gregory Sent: Monday, November 14, 2016 12:53 PM To: [email protected]<mailto:[email protected]> Subject: [cisco-voip] UCCX 11.5 Upgrade Disaster We recently attempted to upgrade UCCX 10.5 -- > 11.5. The deployment was HA, and we didn’t see much risk. The upgrade went fairly smooth, and we hit a finesse bug which required the ECDSA COP file. While minor, it’s still not mentioned in the release notes. The real shocker was 4 hours later when the system stopped accepting calls and just handed out fast busys. Failing over to the secondary would fix the issue for a few minutes, but then fast busy. Our entire contact center, which is HA, was entirely down. Primary down, Secondary Down, and TAC was unable to resolve after hours and hours. It was a total unmitigated Cisco disaster. Rolling back fixed the problem. And then rolling forward again to 11.5 the system worked great again – but only for 4 hours. Then endless fast busys. We rolled back and are on 10.5 working fine. But we are at a loss what could be causing this problem. Cisco TAC is in the same boat. If I had to guess, that seems like more of a licensing failure, because TAC even tried replacing our license. Anyone have a similar experience? Thanks Greg. Disclaimer The information contained in this communication from the sender is confidential. It is intended solely for use by the recipient and others authorized to receive it. If you are not the recipient, you are hereby notified that any disclosure, copying, distribution or taking action in relation of the contents of this information is strictly prohibited and may be unlawful. This email has been scanned for viruses and malware, and may have been automatically archived. _______________________________________________ cisco-voip mailing list [email protected]<mailto:[email protected]> https://puck.nether.net/mailman/listinfo/cisco-voip
_______________________________________________ cisco-voip mailing list [email protected] https://puck.nether.net/mailman/listinfo/cisco-voip
