This is the fix I tried yesterday and it worked, no further issues. From: cisco-voip [mailto:cisco-voip-boun...@puck.nether.net] On Behalf Of Ryan Huff Sent: Thursday, July 09, 2015 12:55 PM To: Heim, Dennis; Charles Goldsmith; voip puck Subject: Re: [cisco-voip] firefox upgrade causing issues with CUCM CCMadmin page
Here is a good explanation of the issue and how to work around it: http://eltonoverip.com/blog/2015/07/firefox-39-0-ssl-error-weak-ephemeral-diffie-hellman-key/ ________________________________ From: dennis.h...@wwt.com<mailto:dennis.h...@wwt.com> To: wo...@justfamily.org<mailto:wo...@justfamily.org>; cisco-voip@puck.nether.net<mailto:cisco-voip@puck.nether.net> Date: Thu, 9 Jul 2015 19:53:09 +0000 Subject: Re: [cisco-voip] firefox upgrade causing issues with CUCM CCMadmin page There is a parameter for those the keys that you need to toggle to disable and then it will work. Not sure of the true impact of that, but that is what I changed. Dennis Heim | Emerging Technology Architect (Collaboration) World Wide Technology, Inc. | +1 314-212-1814 [twitter]<https://twitter.com/CollabSensei> [chat][Phone][video] "There is a fine line between Wrong and Visionary. Unfortunately, you have to be a visionary to see it." - Sheldon Cooper Click here to join me in my Collaboration Meeting Room<https://wwt.webex.com/meet/dennis.heim> From: cisco-voip [mailto:cisco-voip-boun...@puck.nether.net] On Behalf Of Charles Goldsmith Sent: Thursday, July 09, 2015 3:50 PM To: voip puck Subject: [cisco-voip] firefox upgrade causing issues with CUCM CCMadmin page Getting this error with Firefox 39 An error occurred during a connection to 10.52.122.26. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key) The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem. I've seen this on 8.6.2 and 9.1.2, the two 10.5.x systems I have access to have 3rd party certs, and they both work fine. The 8.x and 9.x systems do not have 3rd party, just internally signed. Anyone else seeing this and know a work around? I detest using IE or Safari for CUCM work. _______________________________________________ cisco-voip mailing list cisco-voip@puck.nether.net<mailto:cisco-voip@puck.nether.net> https://puck.nether.net/mailman/listinfo/cisco-voip
_______________________________________________ cisco-voip mailing list cisco-voip@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-voip
