i have rebooted sipxconfig-agent is ok now but problems are still there (same probs)
On Fri, Oct 3, 2008 at 2:36 PM, Tony Graziano <[EMAIL PROTECTED]>wrote: > If it were me, I would have filled out every field of the certificate > signing request. > > Country codes are specific and need to be the two letter equivalent. > > http://www.digicert.com/ssl-certificate-country-codes.htm > > (example) > Country Name (2 letter code) [] : US > Country Name (2 letter code) [] : United States > State or Province Name (full name) [] : Virginia > Locality Name (eg, city) [] : Charlottesville > Organization Name (eg, company) [] : mycompanynamehere > Organization Unit Name (eg, section) [VoIP Services] : IT Services > (end example) > > I also recall that during the initial install (from an ISO) once this is > filled out, the system forces a reboot. I have always been under the > impression certificates cannot have blank fields and that it does matter. > i have already run sipx without problem with the same ssl certs, means just giving 2-3 things and rest kept blank. i did it on other pc, same certs and it works. So not getting where the issue is. now? thanx > > Tony > >>> "Vikas Sharma" <[EMAIL PROTECTED]> 10/03/08 01:31 AM >>> > On Wed, Oct 1, 2008 at 7:20 PM, Scott Lawrence <[EMAIL PROTECTED] > >wrote: > > > > > On Wed, 2008-10-01 at 18:22 +0530, Vikas Sharma wrote: > > > Tony thanx for replying > > > > > > On Wed, Oct 1, 2008 at 5:50 PM, Tony Graziano > > > <[EMAIL PROTECTED]> wrote: > > > Have you installed java prior to installing sipx? If not, are > > > you installing sipx via the yum repo and letting it resolve > > > the depencies for you or are you building your own? > > > > > > > > > i have installed sipx via the yum repo and after that installed java > > > as well. > > > i think issue is related to postgresql database(cdr) and of missing > > > xml files as all the file replication and data replication services > > > are failed. > > > > Something is wrong with your SSL certificates - hard to say what, but > > probably deleting the existing > > certs /etc/sipxpbx/ssl/ssl.* /etc/sipxpbx/ssl/authorities/* and > > generating and installing new ones will help. > > > > > > > > Hi all > thanks tony, scott > > sorry that i am replying you late > > All the packages are installed which Tony listed. > > I have generated ssl certificates many times but in other folder and > without > deleting from /etc/sipxpbx/ssl . Now this time i delete ssl certs from > /etc/sipxpbx/ssl and generate new one here. > > Results ;- > [EMAIL PROTECTED] ssl]# /usr/bin/ssl-cert/gen-ssl-keys.sh > > We need some information from you to generate the certificates: > > Country Name (2 letter code) [] : > Country Name (2 letter code) [] : 91 > State or Province Name (full name) [] : up > Locality Name (eg, city) [] : nd > Organization Name (eg, company) [] : ctl > Organization Unit Name (eg, section) [VoIP Services] : > > ______________________________________________________________________ > Identifying information for your private Certificate Authority (CA) > > CA Common Name (DNS name for CA) [ca.coralsip] : > Email Contact Address for CA ([EMAIL PROTECTED]) [EMAIL PROTECTED] : > > ______________________________________________________________________ > Identifying information for the server: > > SIP domain name [coralsip] : > Full DNS name for the server [vikas.coralsip] : > Email Contact Address for Server ([EMAIL PROTECTED]) [EMAIL PROTECTED] : > > Generating private Certificate Authority (CA) > ______________________________________________________________________ > > > Generating RSA private key for CA (2048 bit) > > > ______________________________________________________________________ > > Generating X.509 certificate signing request for CA > ______________________________________________________________________ > > Generating X.509 certificate for CA signed by itself > ______________________________________________________________________ > > Verify...CA certificate OK > > Generating server certificate request [vikas.coralsip] > ______________________________________________________________________ > > Generating RSA private key for server (1024 bit) > ______________________________________________________________________ > > Generating X.509 certificate signing request for 'vikas.coralsip' > ______________________________________________________________________ > > Generating X.509 certificate signed by ca.coralsip > ______________________________________________________________________ > > Verify...Server certificate OK > > To install your certificate, run the following command > as root on the server: > > /usr/bin/ssl-cert/install-cert.sh > > [EMAIL PROTECTED] ssl]# > [EMAIL PROTECTED] ssl]# /usr/bin/ssl-cert/install-cert.sh > Checking the 'vikas.coralsip' certificate > Installing 'ca.coralsip.crt' certificate as a trusted CA > `ca.coralsip.crt' -> `/etc/sipxpbx/ssl/authorities/ca.coralsip.crt' > hashing /etc/sipxpbx/ssl/authorities > ca.coralsip.crt => 8ff995d6.0 > Installing the 'vikas.coralsip' certificate > `vikas.coralsip.crt' -> `/etc/sipxpbx/ssl/ssl.crt' > Installing the 'vikas.coralsip' private key > `vikas.coralsip.key' -> `/etc/sipxpbx/ssl/ssl.key' > Checking the installed certificate > > Your sipX SSL security is now configured. > > > Your server certificate will expire Oct 3 05:22:02 2011 GMT. > > [EMAIL PROTECTED] ssl]# ls > authorities ca.coralsip.ser ssl.key vikas.coralsip.key > ca.coralsip.crt ssl.crt vikas.coralsip.crt > ca.coralsip.key SSL_DEFAULTS vikas.coralsip.csr > [EMAIL PROTECTED] ssl]# cd authorities/ > [EMAIL PROTECTED] authorities]# ls > 8ff995d6.0 ca.coralsip.crt > > > After sipxconfig-agent is fail now and on web page i am getting same > problems. > > please tell me what to do. > > > thanx > -- > vikas sharma > > -- vikas sharma
_______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-users
