[OpenSIPS-Users] SSL error
Pa Ka
pa.ka12 at outlook.com
Wed Jun 12 22:49:02 UTC 2024
Hello Team, sorry to bother you again, opensips ssl certificate are not working on port 5061. I check with an SSL Checker and returns No SSL certificates were found on [server:5061]
I'm using version 3.2.18 (it was the same issue with 3.4.5) certificate are generated with letsencrypt
This is the modparam
modparam("tls_mgm","tls_library", "openssl")
modparam("tls_mgm","server_domain", "dom")
modparam("tls_mgm","match_ip_address", "[dom]*")
modparam("tls_mgm","verify_cert", "[dom]1")
modparam("tls_mgm","require_cert", "[dom]1")
modparam("tls_mgm","tls_method", "[dom]-TLSv1_2")
modparam("tls_mgm","certificate", "[dom]/etc/opensips/tls/user/user-cert.pem")
modparam("tls_mgm","private_key", "[dom]/etc/opensips/tls/user/user-privkey.pem")
modparam("tls_mgm","ca_list", "[dom]/etc/opensips/tls/user/user-calist.pem")
modparam("tls_mgm", "require_cert", "1")
modparam("tls_mgm", "verify_cert", "1")
I tried this
modparam("tls_mgm","certificate", "[dom]/etc/letsencrypt/live/domain/fullchain.pem")
modparam("tls_mgm","private_key", "[dom]/etc/letsencrypt/live/domain/privkey.pem")
modparam("tls_mgm","ca_list", "[dom]/etc/letsencrypt/live/domain/chain.pem")
but returns permission error message and couldn't start opensips (even if I set the permission of all files in etc/letsencryt to opensips user and group as well.)
Thank you. P.K
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20240612/111a7874/attachment.html>
More information about the Users
mailing list