Cisco Cisco RF Gateway 10 集約されたデータ
Product Bulletin
© 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 1 of 2
Cisco Converged Encryption Manager (CEM)
Required Update to Support SHA-256 Certificates
Required Update to Support SHA-256 Certificates
PB738000
Background
ARRIS Technical Bulletin (Sept 2016) stated that Arris Encryption Renewal System [ERS] server would be using
only SHA-256 certificates from October 24, 2016. All applications that communicate with the ERS server must use
the new SHA-256 certificates. The Cisco CEM product interfaces with the Arris ERS server to deliver Video
Encryption license certificates for Privacy Mode Encryption (PME) that is performed by the Cisco RFGW-10 or
cBR-
8 platforms. The CEM application uses the certificates in the ‘CcadTrustStore’ file to establish a connection
with the ERS Server.
Recommendation
All customers who use the CEM application should download the CEM_v2.0 image with the updated trust store file
at
Alternatively, in order to make the CEM application use the updated ‘CcadTrustStore’ file while establishing
connections with the ERS, the following steps have to be done:
1. Close the CEM application.
2. Replace the CcadTrustStore file in the directory with the one (size 7 KB) in the zip file.
3. Start the CEM application.
Other Information
The ARRIS technical bulletin referencing this change to new SHA-256 certificates can be found here: ATB16-039
SHA-256 Certificate Migration for CAS Products.