Field Notice: FN74126 - The OpenClientServer Fails to Open a Secure Connection to the Network Server for the NSOCI Protocol - Software Upgrade Recommended

Available Languages

Updated:March 15, 2024
Document ID:FN74126

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Notice

THIS FIELD NOTICE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTY OF MERCHANTABILITY. YOUR USE OF THE INFORMATION ON THE FIELD NOTICE OR MATERIALS LINKED FROM THE FIELD NOTICE IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS FIELD NOTICE AT ANY TIME.

Products Affected


Affected Software Product Affected Release Affected Release Number Comments
Base Software RI RI.2023.12, RI.2024.01  

Defect Information


Defect IDHeadline
CSCwj00043OCS fails to open a secure connection to NS (NSOSS/NSOC)

Problem Description


After the release of Cisco Broadworks Application Server 2023.12_1.340, the Open Client Server (OCS) is no longer able to open a secure connection to the Network Server (NS) for the Network Server Open Client Interface (NSOCI) protocol. 


Background


When opening a secure connection to the NS, the OCS fails to validate the identity of the NS because it is using the IP address rather than the fully qualified domain name (FQDN).


Problem Symptom


The OCS fails to open a secure connection to the NS for the NSOCI protocol. This causes all NS provisioning requests that are sent to the OCS to fail. 


Workaround/Solution


Workaround

Disable the peer identity validation.

In the CLI, under System/SSLCommonSettings/GeneralSettings, set validatePeerIdentity to false.

Solution

Upgrade to a more recent OCS or Application Server (2024.01_1.436 or later):


Revision History


VersionDescriptionSectionDate
1.0Initial Release2024-MAR-14

For More Information

For further assistance or for more information about this field notice, contact the Cisco Technical Assistance Center (TAC) using one of the following methods:

Receive Email Notification About New Field Notices

To receive email updates about Field Notices (reliability and safety issues), Security Advisories (network security issues), and end-of-life announcements for specific Cisco products, set up a profile in My Notifications.

Was this Document Helpful?

FeedbackFeedback

Contact Cisco

This Document Applies to These Products