On Thu, 20 Oct 2011 23:43:18 -0400, [email protected] wrote: > U should be able to append the intermediary (chain) before the actual > certificate
I've never used these. Do you mean just create one file with both the cert then the intermediary and paste them into the Import Web Certificate/Certificate & Key Text section? No need for a key. > On 10/20/11, [email protected] <[email protected]> wrote: >>> With GoDaddy you have to load the intermediate GoDaddy certificate >>> authority. Did you do this? If you have, restart sipx and try to >>> reimport >>> the cert again. >>> >>> You'll need to download the godaddy intermediate cert from GoDaddy >>> >> I have it, just not sure where to put it or import it etc. >> A google search leads to four references, none which explain the process. >> There are plenty of threads but none clear enough to make me feel I won't >> break the server. >> >> >>> On Thu, Oct 20, 2011 at 8:03 PM, [email protected] <[email protected]> >>> wrote: >>> >>>> Seems it should be pretty simple. >>> I modified the /usr/bin/ssl-cert/gen-ssl-keys.sh to reflect a 2048 key >>> since godaddy doesn't do any lower. >>> I then generated the CSR using the Generate CSR GUI tool. >>> I took the CSR, pasted it into godaddy, generated the cert. >>> I specified Apache and downloaded the zip. >>> I went into Import Web Certificate in the GUI, pasted the cert into the >>> Certificate Text box and got 'Unable to validate certificate'. >>> I tried using the cert and the key generated by sipx and got the same >>> error. >>> >>> No matter what I do, I get the same error. I've gotten past this before >>> but >>> this is my first one with 4.4.0 and cannot seem to find any answers. >>> Searching google and looking in the forums/wiki leads to no solutions so >>> far other than people saying the wiki is your friend. >>> >>> >>>> Not sure what to try next and I don't want to break my system so >>>> thought >>>> I'd post in case I am missing something. >>> I do see that in the Certificate Authorities, there is no GoDaddy but >>> there >>> is a verisignclass3ca.crt which I believe is generated by the system >>> based >>> on other posts. >>> >>> Mike >>> >>> _______________________________________________ >>> sipx-users mailing list >>> [email protected] >>> List Archive: http://list.sipfoundry.org/archive/sipx-users/ >> _______________________________________________ >> sipx-users mailing list >> [email protected] >> List Archive: http://list.sipfoundry.org/archive/sipx-users/ _______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/
