Plantronics + Polycom. Now together as Poly Logo

Polycom Browser SSL Error

joshelson
Occasional Contributor

Polycom Browser SSL Error

I have a Polycom Browser application I'd like to expose via SSL on our fleet of VVX 500s.  The server uses certficates supplied by StartSSL.  This includes and intermediate and a root SSL.  I added both of those to the Platform CA slots.  This seemed to get rid of debug errors indicating the certificate root wasn't trusted.

 

However, I am unable to get past this:

 

0303175825|brow |4|00|Browser has encountered a SSL error [Id:22]The host name did not match any of the valid hosts for this certificate
0303175825|brow |4|00|[SSL handshake failed] - [https://api.xyz.com/custom/parkingorbit/index.xhtml]

 

When I validate the certificate URL using an external service (such as http://www.sslshopper.com/ssl-checker.html), I get the correct Host Name / SAN on the certificate.  The page also displays just fine on other browsers.

 

Yet nothing I can do seems to clear the error on the VVX phones, which displays as "SSL/TLS handshake failed".

 

Any ideas on how I may be able to resolve this?

Message 1 of 6
5 REPLIES 5
SteffenBaierUK
Polycom Employee & Community Manager

Re: Polycom Browser SSL Error

Hello joshelson ,

  • What Software Version have you installed on your VVX?
  • Is this a wildcard certificate?

I would suggest to lower the "brow" and "curl" log level to 2 and then repeat the test and check the logs.

 

Best Regards

Steffen Baier

Polycom Global Services

----------------
The title Polycom Employee & Community Manager is a community setting and does not reflect my role. I am just a simple volunteer in the community like everybody else. All posts and words are my own & do not represent the views of Employer.

----------------

Notice: This community forum is not an official Poly support resource, thus responses from Poly employees, partners, and customers alike are best-effort in attempts to share learned knowledge. If you need immediate and/or official assistance please open a service ticket through your proper support channels.
Please also ensure you always check the VoIP , Video Endpoint , Skype for Business , PSTN or RPM FAQ's
Message 2 of 6
joshelson
Occasional Contributor

Re: Polycom Browser SSL Error

I am running  PolycomVVX-VVX_500-UA/4.0.2.11307.  I couldn't find any known issues with this version that would affect SSL CA root processing.

 

This is NOT a wildcard certificate, though I do use several alternate names in the certificate.  The CN= name is the root of the URL I am trying to access.

 

I will turn down the debug and give it another shot and report back.

Message 3 of 6
joshelson
Occasional Contributor

Re: Polycom Browser SSL Error

I turned up brow and curl to give me most information. All I got was the same:

 

0304194429|brow |4|00|Browser has encountered a SSL error [Id:22]The host name did not match any of the valid hosts for this certificate
0304194429|brow |4|00|[SSL handshake failed] - [https://api.xxx.com/custom/parkingorbit/index.xhtml]

 

Any other ideas on what might cause this?  Or any other things I can do to resolve?

Message 4 of 6
SteffenBaierUK
Polycom Employee & Community Manager

Re: Polycom Browser SSL Error

Hello joshelson ,

 

the next official step is to raise this with your Polycom reseller to bring it to the attention of Polycom support.

 

If this is not possible please follow up the instructions within my signature.

 

Best Regards

 

Steffen Baier

----------------
The title Polycom Employee & Community Manager is a community setting and does not reflect my role. I am just a simple volunteer in the community like everybody else. All posts and words are my own & do not represent the views of Employer.

----------------

Notice: This community forum is not an official Poly support resource, thus responses from Poly employees, partners, and customers alike are best-effort in attempts to share learned knowledge. If you need immediate and/or official assistance please open a service ticket through your proper support channels.
Please also ensure you always check the VoIP , Video Endpoint , Skype for Business , PSTN or RPM FAQ's
Message 5 of 6
pcTechs
Occasional Advisor

Re: Polycom Browser SSL Error

Browser has encountered a SSL error [Id:22]The host name did not match any of the valid hosts for this certificate
[SSL handshake failed] - [https://api.xyz.com/custom/parkingorbit/index.xhtml]

 

As you have probably noticed in a normal web browser by now that the DNS part or IP address of the URL used to access the webpage must exactly match one of the certificates alternate names.  So if the phone is accessing the webpage via an IP address, but the IP address is not in the certificate, this error would be raised.

 

Yes, i know this is very old.

Message 6 of 6