INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Jobs

ACM 7.0 - AES 7.0 - ACR 15.1

ACM 7.0 - AES 7.0 - ACR 15.1

(OP)
Hi Everybody

I did a connection between AES 7.0 and ACR 15.1.
the configuration seems good as before with ACR 11 and AES 6.3
But now the TSAPI and DMCC are DOWN
They are 4 majors alarms :
- DMCC API not running on (AES address) Reason : Remote host closed connection during handshake
- Link to CTI on (AES address) reporting error : NO such TLINK
- Link to CTI on (AES address) reporting error
- Recorder fatal error: Main CTI feed.

I import already the root CA into the ACR server from AES

In the logs of AES, i see this :
- closing channel because of an exception during handshake: Client requested protocol TLSv1 not enabled or not supported

Could somebody have a idea, what is it my mistake please ?

RE: ACM 7.0 - AES 7.0 - ACR 15.1

Have you enabled TLS 1.0 in AES?

AES Web GUI > Networking > TCP/TLS settings

Enable all 3 TLS versions

RE: ACM 7.0 - AES 7.0 - ACR 15.1

(OP)
Yes they are.
The 3 TLSv1 Protocol have been Configured.

For information into the ACR server (under windows server), I didn't modify the acr.proprieties file. I let the default configuration (so the file is empty).

RE: ACM 7.0 - AES 7.0 - ACR 15.1

I’m having the same issue here and I think it might be related to the certificate. I am deploying new certificates with SMGR as CA and will continue tomorrow.

Plan your work............Work your plan

afro

RE: ACM 7.0 - AES 7.0 - ACR 15.1

(OP)
Hi everybody,

I follow the documentation "Avaya Contact Recorder"
Release 15.1 Planning, Installation and Administration Guide

Appendix F: Advanced Security Settings
Installing a Signed SSL Certificate

Generating a Certificate Signing Request
You need a Certificate Signing Request (CSR) as the first step of the signing process. When you have it, paste it into the Certificate Authority's web page. To generate a CSR:
1. Re-run the keytool command (still in the keystore directory as above) keytoolcommand -certreq -keystore keystore.jks -alias tomcat
2. Enter the password, which is Contact5tor3.
3. Copy and paste the output into the CA's web page. (Include the BEGIN and END lines.)
4. Complete the verification process
5. Reply to the verification emails and other verification steps until you obtain a signed certificate back from the CA.

But into the step 4, i don't know the process to do it with SMGR, maybe if somebody could guide me how to do it with SMGR maybe my problem will be fix

Many thanks for your help

RE: ACM 7.0 - AES 7.0 - ACR 15.1

Hi Allen, to insert smgr certificate in AES just follow Avaya PSN004561u. Also on your AES uncheck DMCC under 'Authenticate Client Cert with Trusted Certs', which can be found under Security, HostAA, service settings. Also note that the name of the T-link must match the settings on ACR. I used the shortname of CM on all fields.

Plan your work............Work your plan

afro

RE: ACM 7.0 - AES 7.0 - ACR 15.1

(OP)
I did also the AES with SMGR and follow step by step the creation of certification.
As they said also, i put the file xxx.pem into Program File/Avaya/ContactRecorder/keystore/cacerts
but still have the link TSAPI and DMCC down with alarm no such TLINK.
AES is into 7.0.1 SP4 and patch also the ACR with acr-15.1fp1-1023

I verify if the TSAPIuser and DMCCuser are into CTI and check the unrestricted access for the CTI users.

One of the thing that i didn't do is to import the CA of CSR but for that i must to know how to use the SMGR for the Certificate Signing Request for ACR in the step 4 of generating CSR.

I didn't see any process for AES 7.0 with ACR 15.1 but I saw a lot of process for AES 6.3 with ACR 12.

If somebody did it already just guide please me because i got lose I think

RE: ACM 7.0 - AES 7.0 - ACR 15.1

Steps 3 through 5 refer to things you must do with the certificate authority (CA). This would be whoever issues your certificates, and the process for those steps could be different depending on who the CA is.

RE: ACM 7.0 - AES 7.0 - ACR 15.1

(OP)
Thanks Wanebo but I would like to use the SMGR as I did with AES.

For sure i did a bad process and I am in the bad way. Maybe into the Appendix F: Advanced Security Settings, I don't need some step but only "Adding Additional AES CA Root Certificates to ACR". But also this i did.

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Resources

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close