Note:

You may need help from your local computer support or IT department to do the steps in this article.

Cause:

If Cisco Jabber is unable to authenticate due to invalid or untrusted security certificates, you may see the following error:

To establish a proper trust relationship between the Jabber client and the Webex Messenger Cloud you need to have the following certificates in your Trusted Root CA Store:

Root CAs

1. QuoVadis Root CA2
   • (Expires 11/24/2031, Certificate SHA1 Fingerprint: ca 3a fb cf 12 40 36 4b 44 b2 16 20 88 80 48 39 19 93 7c f7)
   • https://www.quovadisglobal.com/QVRepository/DownloadRootsAndCRL/QuoVadisRootCA2-PEM.aspx

Intermediate CAs

1. HydrantID SSL ICA G2
   • (Expires 12/17/2023, Certificate SHA1 Fingerprint: AC:4A:72:8B:4D:FC:35:60:1F:A3:4B:92:24:22:A4:2C:25:3F:75:6C)
   • http://trust.quovadisglobal.com/hydsslg2.crt

Why do older versions of Jabber work without these certificates?

Starting in Jabber 9.6 Cisco introduced mandatory certificate checking requirements. These certificate checks are being rolled out incrementally in different versions of jabber. Depending on your version of Jabber you may need to trust one or all of the Root Certificate Authorities.

What will happen if I don't trust these certificates?

Jabber will reject the connection to whichever server you are trying to connect to. This can cause various problems including, but not limited to, inability to login, send or receive screenshots, start desktop share or see presence status.

To get the certificates:

1. Close completely out of Cisco Jabber.
2. Use the links above to download and save the files to your local computer.
3. Once the certificate files are downloaded, import them to your certificate store.
4. After the files are imported, relaunch the Cisco Jabber client.

For help with importing the certificates see the following:

• Windows: http://www.thewindowsclub.com/manage-trusted-root-certificates-windows
• HydrantID Repository: https://hydrantid.com/support/repository/