Integration: Microsoft Office Communications Server (OCS) 2007 R2 with Avaya Communication Manager (CM) telephones in Remote Call Control (RCC) mode

I need to integrate Microsoft Office Communications Server (OCS) 2007 R2 with Avaya Communication Manager (CM) telephones in Remote Call Control (RCC) mode.

I have:

• Server 1: Windows Server 2008 (AD DS role, DNS role, Certificate Authority role);
• Server 2: Windows Server 2008 (OCS Front-End, 177.12.199.14);
• Server 3: Windows Server 2008 (OCS Back-End);
• Server 4: Windows Server 2008 (OCS Mediation);
• Server 5: Windows Server 2008 (OCS Mediation);
• Server 6: Linux (Avaya Application Enablement Service (AES) 5.2.3, 177.12.199.137);
• Server 7: Linux (Avaya CM 5.2.1);
• Windows Workstation (Office Communicator);
• All required Avaya licenses;
• Some Avaya phones.

I did all the settings according to the official Avaya manual (http://support.avaya.com/css/P8/documents/100127013), then I rebooted OCS Front-End server and AES Server. After I ran Office Communicator and logged in I got an error: "No Phone System Connection".

Here are the logs of AES server and OCS Front-End Server:

AES Server:

-------------------------some useless information-----------------------------------------

WARNING: gov.nist.javax.sip.stack.TLSMessageProcessor.sslHandshake(TLSMessageProcessor.java:364) [Close the socket, because the client certificate is invalid or can not find CN on the authorized host list]
2011-05-24 12.23.07,340 gov.nist.core.LogWriter logError
WARNING: Problem Accepting Connection
java.security.cert.CertificateException: javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
    at gov.nist.javax.sip.stack.TLSPeerValidator.(TLSPeerValidator.java:133)
    at gov.nist.javax.sip.stack.TLSMessageProcessor.sslHandshake(TLSMessageProcessor.java:337)
    at gov.nist.javax.sip.stack.TLSMessageProcessor.access$000(TLSMessageProcessor.java:73)
    at gov.nist.javax.sip.stack.TLSMessageProcessor$BackoffTask.run(TLSMessageProcessor.java:501)
    at java.util.TimerThread.mainLoop(Timer.java:512)
    at java.util.TimerThread.run(Timer.java:462)
Caused by: javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
    at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionImpl.java:345)
    at gov.nist.javax.sip.stack.TLSPeerValidator.(TLSPeerValidator.java:131)
    ... 5 more
2011-05-24 12.28.59,417 gov.nist.core.LogWriter logError

-------------------------some useless information again-------------------------------------

OCS Front-End:

-------------------------some useless information-----------------------------------------

TL_ERROR(TF_CONNECTION) [1]0CD0.0710::05/24/2011-09:09:51.753.00000046 (SIPStack,SIPAdminLog::TraceConnectionRecord:SIPAdminLog.cpp(157))$$begin_record
LogType: connection
Severity: error
Text: Outbound TLS negotiation failed
Local-IP: 177.12.199.14:54779
Peer-IP: 177.12.199.137:4723
Peer-FQDN: aeserver1.mydomain.ru
Connection-ID: 0x6D101
Transport: TLS
Result-Code: 0x80090327
$$end_record

TL_ERROR(TF_CONNECTION) [1]0CD0.0710::05/24/2011-09:09:51.753.00000048 (SIPStack,SIPAdminLog::TraceConnectionRecord:SIPAdminLog.cpp(157))$$begin_record
LogType: connection
Severity: error
Text: The connection was closed before TLS negotiation completed. Did the remote peer accept our certificate?
Local-IP: 177.12.199.14:54779
Peer-IP: 177.12.199.137:4723
Peer-FQDN: aeserver1.mydomain.ru
Connection-ID: 0x6D101
Transport: TLS
$$end_record

TL_ERROR(TF_DIAG) [1]0CD0.0710::05/24/2011-09:09:51.753.0000004b (SIPStack,SIPAdminLog::TraceDiagRecord:SIPAdminLog.cpp(140))$$begin_record
LogType: diagnostic
Severity: error
Text: Message was not sent because the connection was closed
SIP-Start-Line: INVITE sip:aes@aeserver1.mudomain.ru SIP/2.0
SIP-Call-ID: ae15203a74ce4ec5a9c014d46a320655
SIP-CSeq: 1 INVITE
Peer: aeserver1.mydomain.ru:4723
$$end_record

-------------------------some useless information again-------------------------------------

I think that there is a certificates error, but I correctly configured my CA and certificates.

Any ideas?

Did someone set up an integration between OCS and Avaya in RCC mode?