The Avaya Aura® Device Services server has multiple options for certificate management, which include:

• Importing local or public certificates.

• Importing local certificates that are signed by an intermediate Certificate Authority.

• Viewing the details for a certificate.

The following sections outline the manual command line and configuration utility processes for setting up certificates during the Avaya Aura® Device Services installation process. After you import a certificate, you must restart Avaya Aura® Device Services for the changes to take effect.

You can also manage and update certificates using the Avaya Aura® Device Services web administration portal. For more information about working with the web administration portal, see Administering Avaya Aura® Device Services.

For information about managing the Avaya Aura® Device Services root certificate and for managing identity certificates, see Administering Avaya Aura® System Manager.

If you do not use Avaya Aura® System Manager certificates, the Avaya Aura® Device Services server requires four PEM certificates and their corresponding key files:

• The REST interface certificate is used for the communication with the clients.

• The OAMP interface certificate is used for the OAMP GUI.

• The node certificate is used for internode communication such as cluster notifications. The node certificate is also used for encrypting database traffic.

Avaya Aura® Device Services supports PKS12-format certificates. The signing authority certificate file is also required.