Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Two queries

Two queries

Two queries

Hi can somebody help in below.

1- I know the steps to create simple certificates (P12 and PEM) from SMGR. I am not a expert in certificate stuff. Can some body help how to increase the certificate Validity??? What is the default validity of these certificate.

2- How can i check, Through ASA command, the serial number of any Peripheral card installed in the gateway and as well as how can i check the serial number of IP and SIP phones registered with CM and SM using the ASA command.

RE: Two queries


RE: Two queries

I’m no help to you on item 1.

If it’s an h.248 gw you can putty into it and there are documented commands that will show you details about the mm’s. For G650 cp’s I’m not sure. List config will show you the board info along with version. When you say serial number of phones, do you mean Mac addresses ?

RE: Two queries

Why would you increase the certificate Validity? I think in new systems it’s 2 years. You can change it in SMGR if you want. But for example IOS 13 and above won’t accept certs with a validity of more than 2 years.

Freelance Certified Avaya Aura Engineer

RE: Two queries

Thank friends for the help. Serial no mean the the 8 to 12 digit serial no at the back of Tel sets.

RE: Two queries

I would not increase the validity. This will create downstream problems, such as IOS devices. However to answer your question, you can change the validity length in System Manager --> Services --> Security --> Certificates --> Certificate Authorities --> Highlight tmedefaultca, (Active) --> Select "edit CA"... In there is the validity configuration, which is 3650 days by default. This is for the CA Root certificate (10 years) for default.

For the alias certificates the default is 2 years.
This can be changed from "certificate profile" and editing the ID_CLIENT_SERVER option, in there you will see the defauly validity set at 730 days. Which can be changed. But with caution since anything over 2 years will not work with IoS devices, and probably more in the future will not accept anything over 2 years.

RE: Two queries

Thanks Pal for the help. Can you please elaborate "This will create downstream problems, such as IOS devices"??? sorry if i am asking a basic question?

RE: Two queries

Thanks for your kind help

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close