Creating and replacing default Identity Certificates for Avaya Oceana Cluster 1

Last Updated : Apr 01, 2025 |

Procedure

  1. On the Avaya Aura® System Manager web console, click Home > Services > Security.
  2. In the left pane, click Certificates > Authority.
  3. In the RA Functions, select Add End Entity.
  4. In the End Entity Profile field, select the profile you modified or created earlier.
  5. Type a Username and Password for Avaya Oceana® Cluster 1 and confirm the password.

    Note the user name and password. These are required when creating the certificate.

  6. In the CN Common Name field, enter the FQDN of Avaya Oceana® Cluster 1.
  7. In the Subject Alternative Name area, in the first DNS Name field, enter the FQDN of Avaya Oceana® Cluster 1.
  8. In the next DNS Name field, enter the Avaya Oceana® Cluster 1 Node 1 Management FQDN.
  9. In the next DNS Name field, enter the Avaya Oceana® Cluster 1 Node 1 SIP FQDN.
  10. In the next DNS Name field, enter the Avaya Oceana® Cluster 1 Node 2 Management FQDN.
  11. In the next DNS Name field, enter the Avaya Oceana® Cluster 1 Node 2 SIP FQDN.
  12. In the next DNS Name field, enter the Avaya Oceana® Cluster 1 Node 3 Management FQDN.
  13. In the next DNS Name field, enter the Avaya Oceana® Cluster 1 Node 3 SIP FQDN.
  14. From the Token list, select P12 file.
  15. Click Add.
  16. Select Public Web.
  17. Click Create Keystore.
  18. Enter the Username and Password for Avaya Oceana® Cluster 1.
  19. From the Key Length list, select 2048 or higher.
  20. Click Enroll.

    The p12 certificate downloads to your Downloads folder.

  21. On the Avaya Aura® System Manager Web console, click Services > Inventory.
  22. In the left navigation pane, click Manage Elements.
  23. On the Manage Elements page, select an Avaya Oceana® Cluster 1 server/node and click More Actions > Configure Identity Certificates.
  24. On the Identity Certificates page, select the Security Module HTTPS certificate.
  25. Click Replace.
  26. On the Replace Identity Certificate page, select Import third party certificate.
  27. Click Choose File.
  28. In the Password field, enter the Avaya Oceana® Cluster 1 password used earlier.
  29. Click Retrieve Certificate.

    The certificate is loaded.

  30. Click Commit.
  31. Replace the Identity Certificate for the other two nodes in Avaya Oceana® Cluster 1 using this same P12 file.
  32. Reboot the cluster.
  33. Wait for the cluster to start before setting to Acceptance state.