Print

Location and usage of Avaya-installed certificate

If you need to use TLS connection when connecting to TSAPI service, you can export the AE Services server trust certificates installed on the AE Services server. This certificate can be obtained via AE Services server management Web console. Go to Security > Certificate Management > CA Trusted Certificates page, select the certificate you want to export, then click on export button. This opens a new page with the certificate in a window. Copy the entire text in the window and add it to the end of the existing CLIENT_INSTALL_PATH/certs/ca/avayaprca.cer that is installed on the client.

For AE Services servers upgraded to 7.1.2 and servers on 6.3.3 and older versions, the AE Services Server includes a default server certificate, which is signed by the Avaya Product Certificate Authority (CA). The AE Services client installation programs for TSAPI and CVLAN install the Avaya Product CA certificate on the client computer. If you plan to use the default certificate you do not have to perform any additional client configuration for server certificate authentication when connecting to an AE Services server version 6.3.3 and older.

The default server certificate should be for lab use only.

Table 1. Where AE Services installs the default CA certificate
# Name Description
1 TSAPI Win32 client <installation-folder>\certs\ca\avayaprca.cer
2 TSAPI Linux client /opt/mvap/tsapi/client/certs/CA/avayaprca.pem
3 CVLAN Linux client /usr/adm/cvlan/certs/CA/avayaprca.pem
4 CVLAN Win32 client <installation-folder>\certs\ca\avayaprca.cer