Sign in

Forgot Password?

Trouble logging in?

Submit a ticket for Registration Support.

Not a Avaya DevConnect member yet?

Create a DevConnect account to join the program.

register now
^

Avaya Aura® Application Enablement Services

See All Content
X

Release 7.0 - Default Server Certificate Changes

Do your applications use a secured connection to an AE Services server?

If so, be aware of the following changes to the the default server certificate that is pre-installed on the AE Services server in Release 7.0 and higher:

  • it is self-signed.
  • it expires one year after installation.

These changes impact the use of certificates in client applications that need to establish a secure connection to an AE Services server, in both development and production environments.

Recommendations for development environments:

  • Only use the default server certificate as a temporary measure, until you are able to obtain your own server certificate.
  • At the earliest opportunity, replace the default with your own server certificate, signed by your own Public Key Infrastructure or by a third-party vendor, such as Verisign.
  • Whether you are using the default or your own, import the signed server certificate to the trust store of each of your client applications so that they can establish a secure connection to the AE Services server.

Requirements for production environments:

When your applications are deployed in an organization's production environment:

  • The default server certificate must be replaced with the organization's own server certificate, signed by its own Public Key Infrastructure or by a third-party vendor, such as Verisign.
  • The signed server certificate must be imported to the trust store of each of the production organization's AE Services client applications so that they can establish a secure connection to the AE Services server.

For instructions on how to replace the default server certificate, see Administering and Maintaining Avaya Aura Application Enablement Services, available for download under the Downloads tab for the Release of AE Services you are using.

For instructions on how to import the default or your own signed server certificate to your applications' trust store, see How to import AE Services CA Trusted certificate to applications in order to establish secure connection.

Note: After an upgrade from a previous AE Services release to AE Services 7.0, any client applications relying on the old, Avaya-provided server certificate for TLS will not be able to connect to the AE Services 7.0 server. However any application using a customer installed server certificate will still be able to connect to the AE Services 7.0 server. Hence it is recommended that, before connecting your application to any AE Services over TLS, you verify which certificate that particular AE Services server is using and take the appropriate action as described in How to import AE Services CA Trusted certificate to applications in order to establish secure connection.

For more information, see Product Support Notice PSN004561u, posted on the Avaya Support site.