Cisco Teleworker SSL VPN

We recently updated the SSL cert on our ASA 5540.  The Webpage is functioning properly but we have several Cisco 7975 VPN teleworker phones that started to fail to authenticate,  We uploaded the new cert to the CM (8.5) but it still isnt happy.  Is there something we have to do to the remote phones to get this to work with the new cert?

Thanks!
LVL 1
davidecooper1967Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Robert Sutton JrSenior Network ManagerCommented:
I see you're running CM 8.5, but are you running at least 9.0 SCCP?
0
davidecooper1967Author Commented:
Load file is SCCP75.9-2-1a for our 7975 phones.




0
Robert Sutton JrSenior Network ManagerCommented:
Im assuming you used the following steps when adding this cert. to CM?

You upload certificates to Cisco Unified Communications Manager using the Cisco Unified Communications Operating System. Follow this procedure to upload VPN concentrator certificates:
 
Procedure
Step 1: From Cisco Unified Communications Operating System Administration, choose Security > Certificate Management.
 
The Certificate List window displays.

Step 2 Click Upload Certificate.

The Upload Certificate popup window displays.

Step 3 From the Certificate Name pull-down menu, choose Phone-VPN-trust.

Step 4 Click Browse to choose the file you want to upload.

Step 5 Click Upload File.

Step 6 Choose another file to upload or click Close.

Here's the example:
http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/security/8_5_1/secugd/secvpgwy.html
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
davidecooper1967Author Commented:
Correct.  That is the procedure we used to upload the cert to the CM.
0
davidecooper1967Author Commented:
Do we have to update the CTL since we changed the 3rd party cert?

http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/security/8_6_1/secugd/secuauth.html#wp1028878
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VPN

From novice to tech pro — start learning today.