Hi, Matt First of all thanks for the help, and good luck with you new job! I can't seem to get this certificate issue to work, but perhaps I should not have left out the following: My sipXecs installation has server1.myinternaldomain.com, and I have made a cname in a domain where I have a wildcard certificate (sipxecs1.myexternaldomain.com) I am trying to install this certificate, so in fact I'm using another domain than the one sipXecs is using.... Perhaps this is not possible at all?
Greetings, Henry -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Matthew Kitchin (public/usenet) Sent: dinsdag 24 januari 2012 14:13 To: Tony Graziano Cc: Discussion list for users of sipXecs software Subject: Re: [sipx-users] ssl web certificate This is how I do it in 4.4 with Microsoft certificate services. I had to make sure the cert server was 2008 (R2 I think) and create a template that does both server and user certs. mkdir $HOME/sslkeys cd $HOME/sslkeys /usr/bin/ssl-cert/gen-ssl-keys.sh --csr Country Name (2 letter code) [] : US State or Province Name (full name) [] : Tennessee Locality Name (eg, city) [] : Nashville Organization Name (eg, company) [] : DSI Organization Unit Name (eg, section) [VoIP Services] : These steps run on Microsoft CA server http://nshpwis7/certsrv/ cat pbx.tx207.sipx.voip.csr Submit, and download as DER openssl x509 -in pbx.tx207.sipx.voip.cer -inform DER -out pbx.tx207.sipx.voip.crt -outform PEM mkdir /etc/sipxpbx/ssl/old cp -r /etc/sipxpbx/ssl/* /etc/sipxpbx/ssl/old/ cp pbx.tx207.sipx.voip.crt /etc/sipxpbx/ssl/ssl-web.crt cp pbx.tx207.sipx.voip.key /etc/sipxpbx/ssl/ssl-web.key cp pbx.tx207.sipx.voip.crt /etc/sipxpbx/ssl/ssl.crt cp pbx.tx207.sipx.voip.key /etc/sipxpbx/ssl/ssl.key rm /etc/sipxpbx/ssl/ssl.keystore rm /etc/sipxpbx/ssl/ssl-web.keystore cp nshpwis7.dsi-corp.netCA.crt /etc/sipxpbx/ssl/authorities /usr/bin/ssl-cert/ca_rehash _______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/
