Tony Graziano wrote:
I used the 4.0.0-015321 ISO build for Centos 5.
I went and got a SSL certificate from a CA, assuming it would be forapache, and
using the CSR stored in /var/sipxdata... I installed it(import) as a file and
it said it imported it OK, but it is not usingit. Shold it run a script to add
this to the store and change theApache SSL conf to point to it, or is it just
replaacing another one? Iwould assume this is a new one, since the crt name is
different.
This is a brand new install and should be reproducible on anotherCentos 5 ISO,
can someone confirm this? I noticed this on the 3.11.12xbuilds as well (also
Centos 5 ISO's), and the several I looked at hadthe same problem. I mentioned
this was not working in a reply tosomeone asking how to use a signed
certificate.
**I've not tested this yet, but am hoping to soon...
I think you are talking about web certificates.
In 4.0 the process will be like this:
in sipXconfig UI as superadmin, go to System>Web Certificates.
Fill in the form data properly. Make sure you have the FQDN of the server, not
just the domain name.
Click the "Generate" button. This will create a CSR which you copy and submit
to your certificate provider.
The certificate provider will in turn give you a file or text.
System>Web Certificates>Import (left side), choose your method (file or text)
and click Import.
Idon't know if the CSR function is properly working on every build of4.0
(doesn't seem to for 4.0.0-015249 2009-04-22T00:52:16 ecs-centos5),but it does
seem straightforward.
**
Should I be looking in sipxconfig.log?
Yes, please check sipxconfig.log and see if you find something
interesting related to certificates in there. Maybe it could be helpful.
Bogdan Brezoi <[email protected]> 04/29/09 7:16 AM >>>
Tony Graziano wrote:
While trying to get a web certificate created, I filled in the fields needed to generate the CSR.
I get the message "Generation of CSR completed successfully."
The text bx which "should" show the CSR, is empty.
This was a new install from ISO. I tried multiple browsers. I see this is
created in:
/var/sipxdata/configserver/web-cert
as -web.csr.
Can this safely be used to obtain a certificate from a CA?
Is this a bug?
Thanks,
Tony
I tested in 4.0.1 rev 15331 build from sources and couldn't reproduce.
Apparently it looks like a bug to me. Could you check sipxconfig.log for
related errors ?
However, i think it is safe to use this -web.csr generated file to
obtain a certificate from a CA.
Regards,
Bogdan
_______________________________________________
sipx-dev mailing list
[email protected]
List Archive: http://list.sipfoundry.org/archive/sipx-dev
Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev
