ADVISORY: Public Key Infrastructure (PKI) Certificate Expiration
SPS Release Date: April 2011 Update: August 2011
Release Level: Enterprise
|
Related System Platforms
· Avaya Aura Communication Manager, Branch Edition (DO) & Conferencing
· Avaya Aura SIP Enablement Services
· Avaya One-X Desktop
· IP Softphone; 96xx SIP Phone
· Modular Messaging
|
|
Summary
Industry standard digital Public Key Infrastructure (PKI) security certificates are used for data encryption on secure communication links in several Avaya products. As an industry standard security measure, security certificates expire after a time, requiring system administrators to update them periodically. This advisory is to notify customers that many Avaya systems worldwide have PKI certificates with expiration dates that were July 23, 2011. Note that this is only an issue on the above listed system platforms in enterprises with SIP enabled in the environment. The listed products are only affected if communication over SIP with Transport Layer Security (TLS) is enabled. SIP over TCP is not affected. All other SIP capable products in Avaya’s portfolio are not impacted by this PKI certificate event.
Be advised that, due to the durability of many SIP connections (e.g. Communication Manager to SIP Enablement Services, Communication Manager to Modular Messaging or Voice Portal, etc.), it is very possible that some systems with expired certificates have not yet exhibited issues. The PKI certificate is only needed when a SIP connection needs to be re-established after being dropped deliberately or inadvertently. All SIP-enabled products at the release levels indicated below that use TLS for secure SIP communication, must receive an updated certificate. If nothing has been done to date, action should be taken immediately.
|
|
Impact of Expired Certificates
Certain features and capabilities will not operate properly after the certificate expiration date. Details regarding the impact of expiring certificates vary by product; CLICK HERE for further information.
|
|
Action Plan
|
|
SPS Technical Service Center *
|
Release Upgrades
|
Self-Service
|
|
Call (888) 777-7281
|
If you intend to upgrade to the most current product version / service pack, combination, new certificates come as part of the upgrade.
|
Most of the certificate update methods involve downloading and applying a service pack, which is considered to be a task that you can perform. In some cases, a system reboot is required to complete the installation of a Service Pack.
|
|
|
|
|
|
|
|
|
*A service representative will create an order for a Remote Technician to connect into your system(s) and determine if your certificate is affected. Please note this is a billable service and not covered under either Avaya or SPS software support maintenance agreements. Customers that have opted to purchase the SPS Firmware Update offer will have patch and software updates performed at no additional fee. Activities required to upgrade systems requiring full feature upgrades (I.E. R-4.x to R-6.x) are not included in the update offer.
If your certificate is determined to need an update, the Remote Engineer will advise you, and will then provide a quote for approval to proceed with remediation activities.
For Self Service Certificate Update Resources – CLICK HERE
For Impact of Expired PKI Certificates on Product Operation – CLICK HERE
Avaya Day One Billing Change
Effective: November 8, 2010
Avaya is changing the policy related to the billing start date of legacy support offers to align with the newer support offers that it has introduced in recent years. Under the new policy, billing will commence at the point-of-sale without a deferral period on Traditional (Per Component basis) and Utility support agreements for new products and for aftermarket additions sold for existing installed products. The billing deferral period of 12 months for Utility and for most hardware products and 90 days for most software products will no longer apply.
Day One Billing will begin on the first day of support and will go on during the manufacturer’s warranty period. The trigger for Day One start is as follows:
- If Avaya sells the product directly and installs the product, support will commence on the date Avaya notifies that the product is installed according to specifications.
- If Avaya sells the product directly, but does not install the product, support will commence on the earlier of the date when: (i) features are enabled, (ii) is downloaded to the target processor or (iii) physically delivered to the customer premises.
- If the product is purchased through an authorized Avaya reseller, support will commence on the first day of the second month following order closure. Support for additional licenses and/or hardware additions/expansions (after initial commencement of support) will commence on the first day of the month following order closure for those additional materials.
What’s New; What Changed?
The change in policy applies to Retail, Wholesale, and Partner Support Services (PSS) offers based on the Traditional and Utility offer structures
Key Features & Capabilities
- Alignment with other support offers.
- Alignment with competitors that already bill from Day One for HW and SW support.
- Globally consistent with other Avaya regions who are already billing Day One for HW support.
Target Customer
The policy change applies to all product attach maintenance support that is not included in Software Support or Support Advantage and includes retail, wholesale and PSS options.
Customer Benefits
Simplification and consistency of terms and billing start dates across Avaya support offers.
Availability
Effective date will be November 8, 2010.
Eligibility
Policy change is applicable to all point-of-sale attach of maintenance for any new hardware or software product and for aftermarket additions sold for existing installed products that are not covered under Software Support or Support Advantage. Includes Retail, Wholesale and Partner Support Services (PSS) offers based on Traditional and Utility support structure.
Service Delivery Offers & Requirements
The policy change will apply to all coverage levels available with Traditional and Utility support offers as follows:
- Full Coverage 24X7 and 8X5
- Parts Plus Remote Support 24X7 and 8X5
- Remote Only Support 24X7 and 8X5
Retail, Wholesale and PSS versions of these offers are included.
Customers that do not elect to purchase coverage at the point of sale will only be covered by the factory warranty, which does not include any on-site support or advance delivery of replacement parts. Also, warranty coverage does not include 24x7 monitoring and alarm resolution provided by diagnostic tools. There is no change in the fragmentation rules.
Comparison of standard warranty coverage and maintenance agreement coverage:
|
Customers Without an Avaya Maintenance Agreement
|
Customers With an Avaya Maintenance Agreement
|
|
Customers receive support in accordance with the Avaya standard Warranty Policy located at http://support.avaya.com. Warranty provides:
· Replacement of defective Software or Hardware
· Access to Software and Firmware updates
· Access to the Self Help Web Site
|
Will include the following services where applicable to the customer's Services Support Agreement:
· Replacement of defective Software or Hardware
· Access to Software and Firmware updates
· Access to the Self Help Web Site
· 24/7 Monitoring / Alarming
· EXPERT Systems (SM)
· Maintenance Software Permissions (MSP's)
· Toll Fraud Identification
· Power Surge Protection
· Proactive IP Support
· Priority Service Over Per Incident
· Preventive Maintenance
· Security Scanning
· Out of Hours Support
· On-Site Service
· Advance Parts Replacement
|
Click here to open the Day One Billing Presentation.
Maintenance per Incident Time and Material Services Support Policy Change
Effective July 1, 2010, Avaya is changing their maintenance per incident time and materials support policy.
The policy change applies to any products that are not under a minimum Avaya Maintenance contract. Please select the links below for more information.
SPS provides comprehensive support for all customers who choose time and material or minimal coverage plans. SPS also offers flexible service plans in support of Avaya’s maintenance plans.
Daylight Savings Time
In August, 2005, the United States Congress passed the Energy Policy Act changing the dates of both the start and end of daylight saving time (DST). DST now starts three weeks earlier (2:00 A.M. on the second Sunday in March) and ends one week later (2:00 A.M. on the first Sunday in November) than in previous years.
The 2012 Daylight Savings Time Change dates are March 11, 2012 and November 4, 2012.
As a valued SPS customer, we want to keep you informed about the effect this change will have on your communications equipment. Many electronic devices, including computers, servers, telephony, and voice messaging equipment utilize a Daylight Savings Automated Time Change feature. This automated feature is currently programmed for the former DST dates and will not recognize the changes required for the revised dates.
ACTION MAY BE REQUIRED
Businesses with server-based solutions, contact centers, time-of-day greetings, time-stamping, or support for multiple time-zone workers, will want to take action to avoid interruptions or mis-routing of calls.
Depending on the type of equipment you have installed, various patches may be available (or manual override) to change the time settings on your electronic devices.
The SPS Customer Service Team is here to assist you. Please call 888.777.7281.
A Service Representative will create an order for a Remote Technician to call into your system to make any necessary updates to the time settings. Please note, this is a billable service.
Helpful Links
Avaya DST Site
Merlin Magix Time Change Instructions
Partner Time Change Instructions