Mike's PBX Cookbook

Aura Certificates Renew

Update System Manager, Session Manager, and Breeze Identity certs:

  1. If certs have been auto renewed, reboot System Manager (SMGR)
  2. Reboot Session Manager and Breeze servers one at a time, ensuring to deny new service first
  3. Putty to each server and initTM before accept new service.

Update Communication Manager (CM) certs:

  1. From System Manager, go to Services → Security → Certificates - Authority
  2. Search End Entities, then edit CM1 cert, change status to new, enter enrollment password and save
  3. Go to Public Web → Create keystore
  4. Enroll with key length 2048 bits. P12 cert file will download
  5. Log into CM. Go to Miscellaneous → download files. Browse to P12 cert file that was downloaded in previous step
  6. Go to Security → Server application certificates. Click add
  7. Enter file name and password, then Open
  8. Check the 4 repositories, then Add
  9. Repeat steps 2 thru 8 for CM2
  10. Reboot both CMs, one at a time using Busyout, Shutdown/Reboot and Release commands. Interchange servers after inactive CM reboots

Update Application Enablement Services (AES) certs:

  1. From System Manager, go to Services → Security → Certificates - Authority
  2. Search End Entities, then edit AES cert, change status to new, enter enrollment password and save
  3. Go to Public Web → Create keystore
  4. Enroll with key length 2048 bits. P12 cert file will download
  5. Log into AES. Go to Security → Certificate Management → Server Certificates
  6. Click on import
  7. Go to Maintenance → Service Controller → Restart Linux

Update Avaya Aura Device Services (AADS) certs:

  1. From System Manager, go to Services → Security → Certificates - Authority
  2. Search End Entities, then edit AADS cert, change status to new, enter enrollment password and save
  3. Go to Public Web → Create keystore
  4. Enroll with key length 2048 bits. P12 cert file will download
  5. Log into AADS 1. (.24:8445/admin/#Application_Management)
  6. Go to Security Settings → Certificate Management → Identity Certificates
  7. Under keystore, import new downloaded cert file. Certs should be applied to all AADS servers in node
  8. Go to Service Control → Application Management and restart services on each AADS server

Update Avaya Aura Media Server (AMS) certs:

  1. From System Manager, go to Services → Security → Certificates - Authority
  2. Search End Entities, then edit AES cert, change status to new, enter enrollment password and save
  3. Go to Public Web → Create keystore
  4. Enroll with key length 2048 bits. P12 cert file will download
  5. Goto Elements → Media Server → Cluster Administration
  6. Click on active server under Primary Server column
  7. Another page will open. Go to Security → Certificate Management → Key Store
  8. Click import and upload new cert file
  9. Go to System Status → Element Status and restart services