Hello Alvaro, I did it myself very long time ago The steps are documented here https://om.alteametasoft.com/openmeetings/docs/RTMPSAndHTTPS.html#Create_Keystore_using_existing_key-pair
On Tue, 14 Jul 2020 at 16:21, Alvaro <[email protected]> wrote: > > ....sorry, in 1) step is: > > cd /opt/red5/conf > > > > > ............... > > El mar, 14-07-2020 a las 11:05 +0200, Alvaro escribió: > > Hi Maxim, here is what i do: > > > ============= > > 1) > > cd /opt/red5 > > > 2) > > Export existing keys into PKCS12 format: > > openssl pkcs12 -export -in /etc/letsencrypt/live/DOMINIUM/cert.pem > -inkey /etc/letsencrypt/live/DOMINIUM/privkey.pem -out red5.p12 -name > red5 -certfile /etc/letsencrypt/live/DOMINIUM/chain.pem > > > 3) > > Import resulting red5.p12 into keystore: > > keytool -importkeystore -srcstorepass PASSWORD -srckeystore red5.p12 > -srcstoretype PKCS12 -deststorepass PASSWORD -destkeystore keystore.jks > -alias red5 > > > 4) > > Import your letsencrypt certificate into the keystore: > > keytool -import -alias root -keystore keystore.jks -trustcacerts -file > /etc/letsencrypt/live/DOMINIUM/chain.pem > > from what I can see you haven't import "intermediate" certificate Is it being installed with Let's encrypt? What is the certificates list? > > 5) > > Copy keystore to truststore: > > cp keystore.jks trustscore.jks > > (and in /opt/red5/conf are keystore.jks > ánd trustscore.jks files) > > > 6) > > Edit ./jee-container.xml file: > > - Comment Tomcat without SSL enabled section > - UNComment Tomcat with SSL enabled section > > > 7) > > Change passwords in /opt/red5/conf/red5.properties > > rtmps.keystorepass=PASSWORD > rtmps.truststorepass=PASSWORD > jmx.keystorepass=PASSWORD > > I would stop here and check HTTPS is working > > 8) > > In OpenMeetings web: > > Admin->Config > > flash.security = true > flash.secure.proxy = none > > > 9) > > Restart red5 service > > Visit: > > https://DOMINIUM:5443/openmeetings > > ...but there is nothing...can't connect, > but yes connect to: > > http://DOMINIUM:5080/openmeetings > > ================= > > What more i must to do? > > Thanks > > > .................................. > > > > > El mar, 14-07-2020 a las 09:27 +0700, Maxim Solodovnik escribió: > > The process of securing 4.0.x is trickier > you have to create JKS store from LetsEncrypt certificate chain > > On Mon, 13 Jul 2020 at 22:02, Alvaro <[email protected]> wrote: > > ,,,am trying the SSL on OM 4.0.X only with letsencrypt, > just like in OM 5.0.4. > > Thanks Maxim, but i don't get working with only letsencrypt. > > If some body know the way to put SSL with only letsemcrypt, > on OM 4.0.x, please say it, We are many people who wait to get > that oportunity. > > Please share your knowting. > > Thank you. > > Alvaro > > > .................................. > > > El dom, 12-07-2020 a las 17:37 +0200, Alvaro escribió: > > Thank you, will try. > > > ................. > > > > > El dom, 12-07-2020 a las 20:38 +0700, Maxim Solodovnik escribió: > > Hello Alvaro, > > OM has it docs shipped with every version > You can find 4.0.x RTMPS docs here > https://om.alteametasoft.com/openmeetings/docs/RTMPSAndHTTPS.html > > On Sun, 12 Jul 2020 at 19:49, Alvaro <[email protected]> wrote: > > Hello, > > I've searched at: > > https://openmeetings.markmail.org/search/ > > ...and following the indication by Jacob Wenze for > put SSL on OM 4.0.10, but don't get it to work. > > If some body have the amability to share the solution, > please say how. > > Thnak you > > > .......................... > > > > -- > Best regards, > Maxim > > > > > -- > Best regards, > Maxim > > -- Best regards, Maxim
