Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Workplace can't connect - certificate issue

Status
Not open for further replies.
john3voltas

john3voltas

Technical User
Nov 12, 2013
127
PT
Hi there.
Here goes.
IPO virtual SE running R11.1.
Workplace for Windows 3.37 but I've tried with releases as old as 3.31 and the result is the same.
IPO's identity certificate was coming to an end, so we regenerated the cert using the same DNS/IP combo.
Customer uploaded the cert to a new Windows 11 Pro PC and installed Workplace. When asked about the setup they chose to use the URL and simply put https://fqdn_of_ipo_server .
Workplace displays an error stating "failed to retrieve system entity ip office".
System Status Application loads perfectly with "secure connection" enabled. No nag stating that it will try to connect unsecure.
How should we debug this issue?
Thanks in advance.
Cheers
 
Sort by date Sort by votes
If Server Edition create the certificates from WebControl (7071) the CA-Cert will be pushed to the client through the autogenerated 46xxsettings.txt then. The settings file has to be loaded using HTTP (not HTTPS) from IPO or you have to add the CA-Cert to the client before.
 
Upvote 0 Downvote
Thank you to everybody coming here to give some insight on this subject.
Very important: if under System>LAN1>VOIP your system doesn't have a SIP Domain Name nor a SIP Registrar FQDN then you need to regenerate the Identity certificate with DNS:192.168.42.1 and IP:192.168.42.1. Use your LAN1 IP address in both instead of 192.168.42.1 which is the default IP address.

1727403629638.png

My new certificate has 4 entries.
IP:192.168.42.1
IP:192.168.43.1
DNS:192.168.42.1
DNS:mypbx.mydomain,local (use your internal hostname+domain here which usually stands for your FQDN)

And this is how I solved my issue.
Self-signed certificates rule! lol
Thanks guys.

Cheers
 
Upvote 0 Downvote
Menniss said:
Why bother, spend $22 and get a proper cert then you don't need to load anything on the client. So much less hassle. https://comodosslstore.com/essentialssl.aspx

Just a thought, sorry I can't assist I gave up on self-generated certs a long time ago.
Click to expand...
I would. But I'm just a BP technician.
My boss should throw in the 22usd and hand it as 1st year present to the end customer.
It is what it is, I have to find a way to make do with the tools Avaya provides.
But thanks for the tip.
Cheers
 
Upvote 0 Downvote
Youbhave to ask the customer to spend this 22$. If he doesn’t, create certificates with Server Edition Server/Application Server.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

NYSTECH
  • Locked
  • Question
IX Workplace and Desk Phones RTP issue 2
Replies
3
Views
219
NYSTECH
NYSTECH
William C290
  • Question
Avaya SBCE & Workplace / TLS
Replies
3
Views
325
derfloh
derfloh
teletechman
  • Question
Workplace busy on hold
Replies
1
Views
144
Ekster
Ekster
Raff-Tech
  • Question
Avaya Workplace: multi call management
Replies
1
Views
284
Shaun E
Shaun E
john3voltas
  • Locked
  • Question
R11.1 - can't connect using Monitor (aka SysMonitor)
Replies
7
Views
469
john3voltas
john3voltas

Part and Inventory Search

Sponsor

Back
Top