Good Morning,

We are using OD7 and Websphere 8.5 with JDK 7. When we try to access an application using https we get handshake failure. Do we need to set up something (like a certificate) in OD or the this is something that needs to be handle in the WebSphere..

Thanks

You would need to configure the certificate on Websphere through its admin console. Also, you may need to add the certificate to EPM since it's the platform voice browser that would use it to access the app server using https.

I'm going to try that. Thank You!!

Good Morning Wilson,,

They added the certificates in websphre and still not working. Please see attachment. The Webspheres team feel that we are missing some definitions in the Avaya side. thanks for helping me.

The error shows the voice browser is trying to connect to the app on the app server. There is nothing you need to do on the app or OD. Have you added the certificate to the EPM? What do you get when you do https://ip:port/appname/Start from a web browser?

From the browser I get start page but when I call it doesn't work. We haven't added anything to the EPM.

You need the certificate in the EPM so that the voice browser can use it to communicate with the app server.

Happy Holidays Wilson,

Our team decided to disabled TLS1.2 and allow TLS1.0 and TLS1.1 to test the system. With those settings the IVR is working but this is not an option for us. We need to enforce TLS 1.2. for PCI compliance. We currently have AEP 7.0, OD7.0 with WebSphere8.5. Can we accomplish this with our current versions? Do we need to update to AEP 7.1 and OD7.1?

Can I use OD7.1 in our current environment?

Thanks

Happy Holidays!

I had to wait to get an answer backed from my AVB colleague. Her initial assessment is EP 7.0 should work with TLS 1.2. I need to get some mpp logs from you and see what the error is. It's best if you can do a test withe log setting to Finest.

Can I use OD7.1 in my current environment?

Yes, you can but I was told that the AVB hasn't changed as far as SSL/TLS is concerned. So if you are seeing a problem with AVB in connecting to the application, you may see the same problem in 7.1. We may still need to figure what the error is.

Making progress....
Currently using :
Webshepre 8.5
OD7.1
JRE 7
AEP 7.0


This is the new message from the Websphere logs :
:601 EST] 000000b2 WSKeyStore E CWPKI0033E: The keystore located at "https://S0143902/opt/Avaya/ExperiencePortal/Support/WebLM/trusted_weblm_certs.jks" failed to load due to the following error: KeyStore "/opt/Avaya/ExperiencePortal/Support/WebLM/trusted_weblm_certs.jks" does not exist..
[12/29/16 13:31:52:636 EST] 000000b2 SystemOut O IOException encountered when attempting to callURL with string: ; with error message: IOException encountered with message: SSLSocketFactory is null. This can occur if javax.net.ssl.SSLSocketFactory.getDefault() is called to create a socket and javax.net.ssl.* properties are not set.

Did you configure the keystore location in the ibm console security page?

This is the first time that I get this message. I'm going to talk to our team