AVAYA Utility Server - CM Login passes TEST, but never displays stations

[IPOthermia]

I confirmed the CM Login is actually logging in to the PBX.
I tried the login to verify access to 'go shell' and other commands.
This is also on a recent upgrade to 6.3 sp8 of AVAYA CM.
When I try to display stations within Utility Services it doesn't appear to be downloading anything from the PBX.
I create Prof20 for my user and gave that profile Bash access and that doesn't help either.
Any Ideas?


AVAYA docs are pretty worthless on this subject as they mention should setup a CM Login, but they don't specifically state how. I suspect if AVAYA docs were better their products would gain wider adoption, but I digress. And I like AVAYA by the way.

 

[kyle555]

try profile 18

 

[CentexPhoneguy]

Did you ever get this resolved? I'm in the same boat.

 

[montyzummer]

Just a warning the utility server has more holes in it than the catholic churches history of telling the truth , if it is pen tested the likly hood is that the customer will demand its removal..... anyway

Create a Privileged Administrator Login on Communication Manager through Webpage.MUST BE PROF 18

Login into CM Webpage.

Go to Administartion === > Server Maintenance.

On left side go to, Security == > Administartor Account.

Now Click on Add Login ===> Privileged Administrator and then submit.

Once Privileged Administrator is created use this credentials on Utility server for CM Login.

Or.......Create user from Communication manager CLI

eg. cmuseradd -c 18 avaya avaya123

where username is avaya and password is avaya123

Test the logon from utility server , check list history in CM to see if you see utility logging in , allow access from the web of cm

Then restart the utility server from cdom , and you should be good to go .


APSS (SME)
ACSS (SME)
ACIS (UC)

 

[CentexPhoneguy]

Is there anything that needs to be allowed in CM? We have everything but telnet enabled in the web interface.

 

[montyzummer]

No if you have the user and a active group , ehat i have found is that restrating utility server twice?????? helps on first time installs.

Bear in mind there are shit loads of articals on the avaya support site relating to patch levels , so make sure you have everything patched in the correct order , read the pcn`s and see if you can associate anything that lookks familiar.

out of interest what platform and versions are you running across the problamatic servers

APSS (SME)
ACSS (SME)
ACIS (UC)

 

[kyle555]

Try telnet?

I remember an issue with early ASA 6.0 where it wouldn't be able to delete ssh keys. Net effect being if you had a copy of a lab and SSH'd to CM at a.b.c.d, ASA would get and store those SSH keys. If you tried using the same ASA instance to connect to the a.b.c.d in production, it never would.

So. Maybe telnet.

 

[montyzummer]

As an example of some issues , that i think you may find useful as the doc is for 6.3

Utility Server: Issues with utility server 6.3
Rate Content Rate this Page


Doc ID: ADMN112003
Version: 2.0
Status: Published
Published date: 02 May 2014
Updated: 23 Jul 2014
Author: dpandharkar


Body


It has been noticed that there are 3 critical bugs with Utility server 6.3. (SP1 and SP2)

Below is the description and solution. I hope it helps in resolving the issues quicker. Please relay across.



<!--[if !supportLists]-->1. <!--[endif]-->Administrator cannot login the Utility Server using admin account.

The login is working fine on the System Platform DOM0 and CDOM and all the other Virtual Machines.

On the Utility Server only Avaya services users (e.g. init) can login.



Apply PCN 1896S in order to permanently fix this login issue:

https://downloads.avaya.com/css/P8/documents/100169320

Installation instructions for the above PCN:



If no patch is installed currently and there was no patch removed either on the Utility Sever, go ahead and install the PCN 1896S -à patch 6.3.3.0.20 .



Manual workaround (temporary solution only):



On the Utility Server multiple duplicate entries get created in the following configuration file: /etc/ldap.conf



Go to the bottom of the file and remove the duplicate entries in order to fix the problem temporarly. This action would require Avaya sroot access on the Utility Server.





/etc/ldap.conf file looks like as follows if there are any extra entries:



# at present and does not support password policy control



#pam_sasl_mech DIGEST-MD5



nss_base_passwd ou=People,dc=vsp?one



nss_base_shadow ou=People,dc=vsp?one



nss_base_group ou=Group,dc=vsp?one



==============>keep the above entries and remove all the rest (below duplicate entries)



nss_base_passwd ou=People,dc=vsp?one



nss_base_shadow ou=People,dc=vsp?one



nss_base_group ou=Group,dc=vsp?one







nss_base_passwd ou=People,dc=vsp?one



nss_base_shadow ou=People,dc=vsp?one



nss_base_group ou=Group,dc=vsp?one







<!--[if !supportLists]-->2. <!--[endif]-->If Utility Services Service Pack 6.3.1.0.20 or 6.3.2.0.20 has been applied, Apache log file permissions are set incorrectly. This results

in the user not being able to view the log files in Utility Services under Utility Services AdministrationàApplication Log View



This problem is fixed with Utility Services Patch 3, 6.3.0.3.20.

util_patch_6.3.0.3.20.zip



This patch will need to be applied after application of either Utility Services Service Packs 6.3.1.0.20 or 6.3.2.0.20.

Note that even if it was applied after application of 6.3.1.0.20, it will need to be applied again after application of 6.3.2.0.20.

The patch should be removed (uninstalled) after ensuring that the Apache log file permissions have been corrected.

However, do not remove the patch file itself.

Please see PSN027002u before applying this patch if you have previously removed any Utility Services Service Pack.

https://downloads.avaya.com/css/P8/documents/100177142

<!--[if !supportLists]-->3. <!--[endif]-->If Utility Services Service Pack 6.3.1.0.20 or 6.3.2.0.20 has been applied, and then is removed, subsequent application of patches or

Service Packs will not apply correctly. It will say at the top of the page that the patch (Service Pack) has been successfully installed,

but if you examine the “Status” field of the Patch Detail page, it will show “Not Installed”. Unless the “Status” field shows Active,

the Service Pack or patch did not install cleanly and you will need to remediate with patch 6.3.0.4.20.



Use System Platform’s standard patching interface for an installed template.

Apply this patch AFTER removal of Utility Services Service Pack 1 (6.3.1.0.20) or AFTER removal of

Utility Services Service Pack 2 (6.3.2.0.20).

When you have verified that the patch has successfully been applied, please remove it, but do not remove

the patch file. You will need to reapply the patch if the existing Service Pack is removed.

This patch is not service affecting.

https://downloads.avaya.com/css/P8/documents/100177141

Use System Platform’s standard patching interface to confirm successful application of the patch.

Ensure that BOTH of the following are displayed on the Patch Detail page after application of the patch:

Patch 6.3.0.4.20 has been successfully installed

Status field of the Patch Detail page shows “Active”



Verify that you can now successfully apply another Service Pack or patch, for example, Service Pack 6.3.2.0.20. Again, you will

check for both the “Patch 632020 has been successfully installed” message at the top of the page, as well as the “Status” field

changing from “Not Installed” to “Active”.


APSS (SME)
ACSS (SME)
ACIS (UC)

 

[CentexPhoneguy]

Telnet did not help..same results

Version: util-6.3.0.0.20

We have 2 lab CM's..trying on 6.3 now. Also had the same failure on 5.2.1

This is a fresh install, haven't patched at all, not a production load, just playing with it at this time.

I'll read through the PCN's and patch notes.

I can see the user log on and log off the CM, no other activity....also, the utility server does not have MyPhone Admin under the Utilities menu.

 

[montyzummer]

I would patch system platform , if that fails reinstall

APSS (SME)
ACSS (SME)
ACIS (UC)

 

[CentexPhoneguy]

The immediate need was to test drive MyPhone, and it is working... still not seeing stations in Utility Server Main menus, will dive back in at a later time.. thanks for the help!

 

[montyzummer]

So what got that working out of interest ??

APSS (SME)
ACSS (SME)
ACIS (UC)

 

[CentexPhoneguy]

simply had to browse to the following, and config...pretty straightforward, but I was missing that step yesterday

https://xxx.xxx.xxx.xxx:8443/MyPhoneAdmin/home.action