Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

[Gary_Bates_Command_Solutions]

This is how I stop the cert error,

As you stated, clear the cache folders and then use the following installation 
switch, it works 100% on Jabber version 12.9.5

msiexec.exe /i CiscoJabberSetup.msi CLEAR=1 EXCLUDED_SERVICES=WEBEX 
UPN_DISCOVERY_ENABLED=false

 

Gary

 

 

From: cisco-voip  On Behalf Of Riley, Sean
Sent: Thursday, 9 December 2021 12:36 AM
To: cisco-voip@puck.nether.net
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

 

I received the same answer from tac as others.  They have a but ID, but the 
workaround to disable telemetry is incorrect as we have had this disabled in 
the xml for a couple of years now.  We will be upgrading with the install 
switch to disable webex going forward.  Hopefully this puts a stop to this cert 
warning.

 

https://quickview.cloudapps.cisco.com/quickview/bug/CSCvg82067

 

>From support:

One of the workarounds that I mentioned was to disable the Webex service, do 
you think you can try that?

 

Uninstall Jabber, clear the cache and install it with the following command:

msiexec.exe CiscoJabberSetup.msi CLEAR=1 EXCLUDED_SERVICES=Webex

 

 

 

From: cisco-voip mailto:cisco-voip-boun...@puck.nether.net> > On Behalf Of Riley, Sean
Sent: Tuesday, November 30, 2021 12:17 PM
To: cisco-voip@puck.nether.net  
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

 

We did not start to see the cert warnings until 11/15/21.  Not sure if that 
helps correlate with a certificate expiring, etc.

 

From: Lelio Fulgenzi mailto:le...@uoguelph.ca> > 
Sent: Monday, November 29, 2021 6:18 PM
To: gba...@commandsolutions.com.au  
Cc: Riley, Sean mailto:sri...@robinsonbradshaw.com> >; cisco-voip@puck.nether.net 
 
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

 

 

They better come up with a better workaround to re-installing all our clients.  

 

If Jabber has a built in procedure, then they really need to make sure it 
works.  

 

Why are we all of a sudden seeing these cert issues? 

 

This downloading of fixes really needs to be curbed. 

Sent from my iPhone

 

On Nov 29, 2021, at 4:53 PM, Gary_Bates_Command_Solutions 
mailto:gba...@commandsolutions.com.au> > wrote:

 

CAUTION: This email originated from outside of the University of Guelph. Do not 
click links or open attachments unless you recognize the sender and know the 
content is safe. If in doubt, forward suspicious emails to ith...@uoguelph.ca 
 

 

Hi there

 

We experienced this issue with our on-prem Jabber updates,

 

Fix we applied was as follows:

 

1.  Do a “clean install” of Jabber (must delete cache files and uninstall 
old version)
2.  Wen installing new version,  use this installation file with the switch 
at the end  as below

 

msiexec.exe /i CiscoJabberSetup.msi CLEAR=1 EXCLUDED_SERVICES=WEBEX 
UPN_DISCOVERY_ENABLED=false

 

Our desktop team added a script to clear the cache folders on desktops with 
previous installations as follows:

 

## Deleting all “.\Cisco” folders found on local profiles

Write-Log "-> Deleting all `“.\Cisco`” folders found on local 
profiles"

$users = Get-ChildItem -Path "C:\Users"

$users | ForEach-Object {

Remove-Folder -Path "C:\Users\$($_.Name)\AppData\Local\Cisco"

Remove-Folder -Path "C:\Users\$($_.Name)\AppData\Roaming\Cisco"

 

3.  In the service profile for Jabber, add the 
“ServiceDiscoveryExcludedServices --> WEBEX”

This will ensure once Jabber is installed and configured, it will no longer try 
to connect to WEBEX each time the user logins.

 

HTH

 

Gary

 

From: cisco-voip mailto:cisco-voip-boun...@puck.nether.net> > On Behalf Of Lelio Fulgenzi
Sent: Tuesday, 30 November 2021 8:24 AM
To: Riley, Sean mailto:sri...@robinsonbradshaw.com> >
Cc: cisco-voip@puck.nether.net  
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

 

I will likely be opening a case for this. We had a few. Our workstations are 
not configured to not get root very updates I’ve been told.  

 

We’ve only had a few cases. 

 

Not sure this hasn’t made it to an advisory or bug or something.  

 

Sent from my iPhone

 

On Nov 29, 2021, at 1:04 PM, Riley, Sean mailto:sri...@robinsonbradshaw.com> > wrote:

 

CAUTION: This email originated from outside of the University of Guelph. Do not 
click links or open attachments unless you recognize the sender and know the 
content is safe. If in doubt, forward suspicious emails to ith...@uoguelph.ca 
 

 

Did anyone come up with a solution to this, other than to tell the users to 
Accept the Cert?

 

We are completely on prem with no webex services.  Clients are v 12.9.6.  I was 
able to reproduce the issue once using a test user 

Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

[Lelio Fulgenzi]

Do we know if we have to uninstall Jabber? Or is upgrading/re-installing with 
those command lines sufficient?

I can’t recall if upgrading uninstalls files first.

Sent from my iPhone

On Dec 8, 2021, at 8:42 AM, Riley, Sean  wrote:



CAUTION: This email originated from outside of the University of Guelph. Do not 
click links or open attachments unless you recognize the sender and know the 
content is safe. If in doubt, forward suspicious emails to ith...@uoguelph.ca

I received the same answer from tac as others.  They have a but ID, but the 
workaround to disable telemetry is incorrect as we have had this disabled in 
the xml for a couple of years now.  We will be upgrading with the install 
switch to disable webex going forward.  Hopefully this puts a stop to this cert 
warning.

https://quickview.cloudapps.cisco.com/quickview/bug/CSCvg82067

From support:
One of the workarounds that I mentioned was to disable the Webex service, do 
you think you can try that?

Uninstall Jabber, clear the cache and install it with the following command:
msiexec.exe CiscoJabberSetup.msi CLEAR=1 EXCLUDED_SERVICES=Webex



From: cisco-voip  On Behalf Of Riley, Sean
Sent: Tuesday, November 30, 2021 12:17 PM
To: cisco-voip@puck.nether.net
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

We did not start to see the cert warnings until 11/15/21.  Not sure if that 
helps correlate with a certificate expiring, etc.

From: Lelio Fulgenzi mailto:le...@uoguelph.ca>>
Sent: Monday, November 29, 2021 6:18 PM
To: gba...@commandsolutions.com.au
Cc: Riley, Sean 
mailto:sri...@robinsonbradshaw.com>>; 
cisco-voip@puck.nether.net
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert


They better come up with a better workaround to re-installing all our clients.

If Jabber has a built in procedure, then they really need to make sure it works.

Why are we all of a sudden seeing these cert issues?

This downloading of fixes really needs to be curbed.
Sent from my iPhone

On Nov 29, 2021, at 4:53 PM, Gary_Bates_Command_Solutions 
mailto:gba...@commandsolutions.com.au>> wrote:

CAUTION: This email originated from outside of the University of Guelph. Do not 
click links or open attachments unless you recognize the sender and know the 
content is safe. If in doubt, forward suspicious emails to 
ith...@uoguelph.ca

Hi there

We experienced this issue with our on-prem Jabber updates,

Fix we applied was as follows:


  1.  Do a “clean install” of Jabber (must delete cache files and uninstall old 
version)
  2.  Wen installing new version,  use this installation file with the switch 
at the end  as below


msiexec.exe /i CiscoJabberSetup.msi CLEAR=1 EXCLUDED_SERVICES=WEBEX 
UPN_DISCOVERY_ENABLED=false

Our desktop team added a script to clear the cache folders on desktops with 
previous installations as follows:

## Deleting all “.\Cisco” folders found on local profiles
Write-Log "-> Deleting all `“.\Cisco`” folders found on local 
profiles"
$users = Get-ChildItem -Path "C:\Users"
$users | ForEach-Object {
Remove-Folder -Path "C:\Users\$($_.Name)\AppData\Local\Cisco"
Remove-Folder -Path "C:\Users\$($_.Name)\AppData\Roaming\Cisco"


  1.  In the service profile for Jabber, add the 
“ServiceDiscoveryExcludedServices --> WEBEX”

This will ensure once Jabber is installed and configured, it will no longer try 
to connect to WEBEX each time the user logins.


HTH

Gary

From: cisco-voip 
mailto:cisco-voip-boun...@puck.nether.net>> 
On Behalf Of Lelio Fulgenzi
Sent: Tuesday, 30 November 2021 8:24 AM
To: Riley, Sean 
mailto:sri...@robinsonbradshaw.com>>
Cc: cisco-voip@puck.nether.net
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

I will likely be opening a case for this. We had a few. Our workstations are 
not configured to not get root very updates I’ve been told.

We’ve only had a few cases.

Not sure this hasn’t made it to an advisory or bug or something.

Sent from my iPhone


On Nov 29, 2021, at 1:04 PM, Riley, Sean 
mailto:sri...@robinsonbradshaw.com>> wrote:

CAUTION: This email originated from outside of the University of Guelph. Do not 
click links or open attachments unless you recognize the sender and know the 
content is safe. If in doubt, forward suspicious emails to 
ith...@uoguelph.ca

Did anyone come up with a solution to this, other than to tell the users to 
Accept the Cert?

We are completely on prem with no webex services.  Clients are v 12.9.6.  I was 
able to reproduce the issue once using a test user account, but have not been 
able to reproduce since, even after a Jabber reset.  Most of my team is running 
Jabber v 14.x and we have not seen the cert warning.

Does a user declining the cert add it to the Untrusted 

[cisco-voip] Jabber Persistent Chat - Migrate to MS SQL

[Riley, Sean]

We are currently running PostgreSQL for our on-prem Jabber persistent chat 
database.  We would like to migrate this to MS SQL, but there does not seem to 
be much documentation available to assist with this.  Cisco seems to leave it 
up to SQL admins to figure this out.  Since I am light on SQL admin experience, 
has anyone gone through this migration?  If so, would you have any helpful docs 
I could reference or care to share any insight?

CUCM/IM v 11.5 su9
Jabber v 12.9 and 14.x

Thanks.

Sean.
___
cisco-voip mailing list
cisco-voip@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip

Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

[Riley, Sean]

I received the same answer from tac as others.  They have a but ID, but the 
workaround to disable telemetry is incorrect as we have had this disabled in 
the xml for a couple of years now.  We will be upgrading with the install 
switch to disable webex going forward.  Hopefully this puts a stop to this cert 
warning.

https://quickview.cloudapps.cisco.com/quickview/bug/CSCvg82067

From support:
One of the workarounds that I mentioned was to disable the Webex service, do 
you think you can try that?

Uninstall Jabber, clear the cache and install it with the following command:
msiexec.exe CiscoJabberSetup.msi CLEAR=1 EXCLUDED_SERVICES=Webex



From: cisco-voip  On Behalf Of Riley, Sean
Sent: Tuesday, November 30, 2021 12:17 PM
To: cisco-voip@puck.nether.net
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

We did not start to see the cert warnings until 11/15/21.  Not sure if that 
helps correlate with a certificate expiring, etc.

From: Lelio Fulgenzi mailto:le...@uoguelph.ca>>
Sent: Monday, November 29, 2021 6:18 PM
To: gba...@commandsolutions.com.au
Cc: Riley, Sean 
mailto:sri...@robinsonbradshaw.com>>; 
cisco-voip@puck.nether.net
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert


They better come up with a better workaround to re-installing all our clients.

If Jabber has a built in procedure, then they really need to make sure it works.

Why are we all of a sudden seeing these cert issues?

This downloading of fixes really needs to be curbed.
Sent from my iPhone

On Nov 29, 2021, at 4:53 PM, Gary_Bates_Command_Solutions 
mailto:gba...@commandsolutions.com.au>> wrote:

CAUTION: This email originated from outside of the University of Guelph. Do not 
click links or open attachments unless you recognize the sender and know the 
content is safe. If in doubt, forward suspicious emails to 
ith...@uoguelph.ca

Hi there

We experienced this issue with our on-prem Jabber updates,

Fix we applied was as follows:


  1.  Do a “clean install” of Jabber (must delete cache files and uninstall old 
version)
  2.  Wen installing new version,  use this installation file with the switch 
at the end  as below


msiexec.exe /i CiscoJabberSetup.msi CLEAR=1 EXCLUDED_SERVICES=WEBEX 
UPN_DISCOVERY_ENABLED=false

Our desktop team added a script to clear the cache folders on desktops with 
previous installations as follows:

## Deleting all “.\Cisco” folders found on local profiles
Write-Log "-> Deleting all `“.\Cisco`” folders found on local 
profiles"
$users = Get-ChildItem -Path "C:\Users"
$users | ForEach-Object {
Remove-Folder -Path "C:\Users\$($_.Name)\AppData\Local\Cisco"
Remove-Folder -Path "C:\Users\$($_.Name)\AppData\Roaming\Cisco"


  1.  In the service profile for Jabber, add the 
“ServiceDiscoveryExcludedServices --> WEBEX”

This will ensure once Jabber is installed and configured, it will no longer try 
to connect to WEBEX each time the user logins.


HTH

Gary

From: cisco-voip 
mailto:cisco-voip-boun...@puck.nether.net>> 
On Behalf Of Lelio Fulgenzi
Sent: Tuesday, 30 November 2021 8:24 AM
To: Riley, Sean 
mailto:sri...@robinsonbradshaw.com>>
Cc: cisco-voip@puck.nether.net
Subject: Re: [cisco-voip] [External] Jabber Users Prompted To Accept Webex Cert

I will likely be opening a case for this. We had a few. Our workstations are 
not configured to not get root very updates I’ve been told.

We’ve only had a few cases.

Not sure this hasn’t made it to an advisory or bug or something.

Sent from my iPhone


On Nov 29, 2021, at 1:04 PM, Riley, Sean 
mailto:sri...@robinsonbradshaw.com>> wrote:

CAUTION: This email originated from outside of the University of Guelph. Do not 
click links or open attachments unless you recognize the sender and know the 
content is safe. If in doubt, forward suspicious emails to 
ith...@uoguelph.ca

Did anyone come up with a solution to this, other than to tell the users to 
Accept the Cert?

We are completely on prem with no webex services.  Clients are v 12.9.6.  I was 
able to reproduce the issue once using a test user account, but have not been 
able to reproduce since, even after a Jabber reset.  Most of my team is running 
Jabber v 14.x and we have not seen the cert warning.

Does a user declining the cert add it to the Untrusted Certificates store in 
Windows?  Maybe that takes priority over a cert in the trusted store?

I have done the following, but we still have sporadic reports of the 
certificate warning from Jabber:


  1.  Ensured the new IdenTrust Commercial Root CA 1 was in CUCM and services 
restarted on CUCM and IM
  2.  Added the HydrantID Server CA O1 to the computers trusted store via GPO.

Thanks.


From: cisco-voip 
mailto:cisco-voip-boun...@puck.nether.net>> 
On Behalf Of Lelio