When SSO/OAuth is enabled on Avaya Aura® Device Services, you must provision the following parameters for all Avaya Workplace Client softphones configured to use the Avaya Authorization service (OAuth2):
AVAYA_AUTHORIZATION_REALM: Set the value to the Keycloak realm configured on Avaya Aura® Device Services, which is SolutionRealm
by default.
Important:
If other UC servers, such as Avaya Aura® Web Gateway or Presence and Multimedia Messaging, are configured to use SSO/OAuth, ensure that they use the same Keycloak realm.
ACSSSO: Set the value to 3, so that Avaya Workplace Client uses Avaya Authorization for Avaya Aura® Device Services.
ESMSSO: Set the value to 3, so that Avaya Workplace Client uses Avaya Authorization for Presence and Multimedia Messaging.
AUTOCONFIG_USESSO: Set the value to 3 so that Avaya Workplace Client uses Avaya Authorization for automatic configuration.
-
SETTINGS_FILE_URL: Set the value to the
Avaya Aura® Device Services dynamic configuration URL with the additional
preferredAuth=bearer query parameter. For example:
https://<AADS_FRONT_END_FQDN>:<AADS_PORT>/acs/resources/configurations?preferredAuth=bearer
Note:
In a cluster environment, if you use front-end port 443, you must use the Avaya Aura® Device Services front-end FQDN or virtual IP address when configuring this parameter.
