![]() |
Install your own certificates signed by either your own PKI infrastructure or a third party PKI vendor. If such resources are not available immediately, use the temporary AE Services server self-signed certificate. It should be noted that this self-signed certificate is valid for only 1 year. It is expected that you deploy your own certificates before this certificate expires.
![]() | Note |
Do not use the default server certificates in a production environment. |
For an upgrade from a previous AE Services 5.x or 6.x release to AE Services 7.x.x, any customer application relying on the old, Avaya provided server certificate for TLS will not be able to connect to the AE Services Release 7.x.x server. If you have been using these certificates in a production environment, we strongly recommend that you prepare and execute a rollout plan, as soon as possible, to update your client applications and AE Services server with your own certificates.
Avaya strongly encourages customers to create this certificate prior to upgrading to the AE Services 7.1.x.
![]() | Note |
For any AE Services release, where the installed AE Services server certificate has been replaced with a customer provided certificate, the client/server TLS connection will not be affected by the aforementioned certificate expiration or replacement. |
![]() | Note |
For the AE Services 5.x and 6.x releases, all versions of the default installed server certificate are scheduled to expire no later than January 2018. For any customer using this certificate, once this certificate expires, an AE Services based client using a TLS connection will not be able to communicate with the AE Services server. |
Possible customer options to create the new AE Services server certificate:
Use your own Private Key Infrastructure (PKI).
Use Avaya Aura’s System Manager (SMGR) Trust Management PKI feature. See System Manager Trust Management in Appendix H.
Use an Open Source PKI , for example EJBCA. Avaya does not endorse or require the use of this product or vendor. You may use any product or vendor of your choosing.
Use a third party vendor , for example Verisign. Avaya does not endorse or require the use of this product or vendor. You may use any product or vendor of your choosing.
Use OpenSSL to create your own Certificate Authority (CA). See the OpenSSL section in Appendix I.
If for some reason none of the above options fit your immediate need, please contact Avaya Services for additional assistance.