About this task
The server certificate you are installing is based on the Windows
2008 Enterprise CA server certificate template you created when you
completed the procedure Creating Version 3 (Windows Server 2008) Certificate Templates for
Server Certificates)
Follow these steps to request and install the server certificate
on the Avaya Application Enablement Services Server.
Procedure
- On the Microsoft OCS server, start your Web browser, and
log in to the Avaya Application Enablement Services Management Console.
- From the main menu of the AE Services management console, select .
- From the Server Certificates page,
click Add.
- Follow these steps to complete the Add Server
Certificate page.
- In the Certificate Alias field, select a certificate
alias (for example aeservices).
- In the Password field enter an arbitrary password.
- In the Re-enter Password field,
type the password again.
- In the Distinguished Name field,
type the distinguished name attributes for
your AE Services Server, as follows:CN=AE_Server_FQDN,OU=Department,O=Company,L=City,S=State,C=Country/Region
For example:CN=msavaes1.sitlms.net,OU=SITL,O=Avaya,L=Lincroft,S=New
Jersey,C=US
- Leave the other fields at the defaults, and click Apply.
- From the main menu of the AE Services management console, select .
- From the Pending Server Certificates Request page, select the certificate, and click Manual Enroll.
- On the Server Certificate Manual Enrollment Request page, copy the entire contents of the Certificate Request
PEM text box, and paste it into a text file, for example goblin1.txt
- On Windows 2008 Enterprise CA server, click .
- In the Run dialog box, type cmd and click OK
- At the command prompt, type the following command:certreq -attrib CertificateTemplate:<template name>
- Press Enter.
- From the Open Request File window,
select the file you created previously, for example, goblin1.
The system displays the Select Certification Authority window that lets you select the CA that will issue the certificate.
- Select the issuing CA, for example dmccdev4, and click OK.
The system displays the Save Certificate window.
- In the Save Certificate window, type the file
name, for example goblin1.cer, and click Save to save the file to your local machine.
- From the main menu of the Avaya AE Services Management Console, click .
- From the Pending Requests Certificate Requests page, select the alias for the certificate request created for aeservices
and click Manual Enroll.
- From the Server Certificate Manual Enrollment
Request page, click on Import.
Your browser displays the Server Certificate Import page.
- Complete the Server Certificate Import page as follows:
- In the Certificate Alias field
select the same Certificate Alias, aeservices (For default this step can be skipped).
- Ensure that the Establish Chain of Trust checkbox is checked.
- Load the saved file; for example, goblin1.cer.
- Click Apply.
If the import is successful, your browser redisplays the Server Certificate Import page with following message: Certificate imported successfully
Figure 1. Certificates in a load-balancing scenario