1

Configure Avaya Aura® Device Services with the appropriate front end certificate.

The Front-end IP or address configured during installation is used as the common name for the nginx certificate and published during resource discovery. The front-end certificate is used on port 443 and is located at /opt/Avaya/DeviceServices/<version>/CAS/<version>/nginx/certs/nginx.crt.

2

Generate certificate request on Avaya SBC by using the Avaya Aura® Device Services front-end FQDN.

See Creating a CSR.

3

Issue certificate from Certificate Authority.

• If you use Avaya Aura® Device Services in an Avaya Aura® environment, see Creating an end entity and Creating the certificate using a CSR.

• If you use Avaya Aura® Device Services in an environment without Avaya Aura®, obtain a certificate from a third-party CA using the CSR.

4

Ensure port 443 is open on both sides of Avaya SBC.

5

Install server certificates on Avaya SBC.

See Uploading a certificate file and Synchronizing and installing certificate in a multi-server deployment.

6

Install client certificates on Avaya SBC.

• If you use Avaya Aura® Device Services in an Avaya Aura® environment, see Downloading the System Manager PEM certificate and Installing a CA certificate.

• If you use Avaya Aura® Device Services in an environment without Avaya Aura®, obtain your third-party CA root certificate and install it as described in Installing a CA certificate.

7

Create client and server TLS profiles.

See Creating a TLS server profile and Creating a TLS client profile.

8

Add reverse proxy.

See Adding a reverse proxy.