Generating Certificate Signing Requests

Last Updated : Oct 01, 2021 |

About this task

Use this procedure to generate a Certificate Signing Request (CSR).

Important:

You must use this procedure if you are not using System Manager as the only Certificate Authority (CA) to sign certificates for all solution components.

Before you begin

Ensure that Avaya Aura® Web Gateway is successfully installed with System Manager signed certificates. This is the default setting for installation.

Procedure

Run the following command:
```
mkdir /tmp/AAWGportalCerts
chmod 770 /tmp/AAWGportalCerts
```
The system creates an AAWGportalCerts directory in /tmp/ for the output of the script that will generate the CSRs.
Run the following command to navigate to the directory containing the script:
```
cdto misc
```
To generate a CSR, run the following command:
```
sudo ./createCSR.sh /tmp/AAWGportalCerts frontEndFQDN localFQDN organizationNameorganizationUnit locality stateOrProvince countryCode emailAddress
```
Important:
This command is a single Linux command and must be entered as a single line even if it appears as several lines in the document.

The parameters for this script are:
- frontendFQDN: For a cluster installation, this is the FQDN of the Virtual IP or external load balancer. For simple, non-clustered installations, this is the FQDN of the server where Avaya Aura® Web Gateway is installed.
- localFQDN: The FQDN of the server.
- orgnizationName: The name of the organization.
- organizationUnit: The name of the unit or sub-organization. For example, Design.
- locality: The name of the city or town.
- state: The two-digit state or province code.
- countryCode: The two-digit country code.
- emailAddress: The administrator email address.
Verify that /tmp/AAWGportalCerts contains the .key and .csr files for front-end.

Use the frontEnd.csr and frontEnd.key files to generate certificates. You can ignore .csr and .key files for node, OAMP, and SIP.

Send Feedback

AVAYA DOCUMENTATION CENTER

No results found