<div>Hi Bogdan,<br><br></div><div>I have looked through this tutorial but from what I could see it only talks about TLS authentication/encryption for other SIP servers (not encryption for clients).</div><div><br></div><div>
Is it possible to have client authentication (for example a SIP softphone) using TLS without the client having to install a special certificate?</div><div><br></div><div>I would like to have this transparent to the users basically so the signalling traffic is encrypted.</div>
<div><br></div><div>Kind regards,</div><div>Andy Savage</div><div><br></div><div>-- <br>"The greatest challenge to any thinker is stating the problem in a way that will allow a solution"<br>- Bertrand Russell<br>
<br>Andy Savage<br>Cell Phone: +852 936 34341<br>Skype ID: andy_savage<br>Linked In: <a href="http://www.linkedin.com/in/andysavage">http://www.linkedin.com/in/andysavage</a><br>
<br><br><div class="gmail_quote">On Wed, Apr 21, 2010 at 11:25 PM, Bogdan-Andrei Iancu <span dir="ltr"><<a href="mailto:bogdan@voice-system.ro">bogdan@voice-system.ro</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Hi Andy,<br>
<br>
Have you when through the TLS tutorial -<br>
<a href="http://www.opensips.org/Resources/DocsTutorials#toc7" target="_blank">http://www.opensips.org/Resources/DocsTutorials#toc7</a><br>
<br>
Regards,<br>
<font color="#888888">Bogdan<br>
</font><div><div></div><div class="h5"><br>
Andy Savage wrote:<br>
> Hi there,<br>
><br>
> I'm having a little bit of trouble understanding how to configure TLS<br>
> support for OpenSIPs. The reason for my confusion is that I'm simply<br>
> using OpenSIPs as a relay server for SIP traffic between two SIP<br>
> clients (lets say for now that the clients are running Bria).<br>
><br>
> I am not interested in linking to other SIP servers (or<br>
> authenticating/encrypting to them) simply to provide encrypted<br>
> signalling traffic between the clients to ensure their privacy.<br>
><br>
> How would I go about setting the OpenSIPs config file up for this sort<br>
> of scenario? I presume I don't need to generate a user certificate for<br>
> this since I don't have any other sip servers I'm linking to?<br>
><br>
> Kind regards,<br>
> Andy Savage<br>
><br>
> --<br>
> "The greatest challenge to any thinker is stating the problem in a way<br>
> that will allow a solution"<br>
> - Bertrand Russell<br>
><br>
> Andy Savage<br>
> Cell Phone: +852 936 34341<br>
> Skype ID: andy_savage<br>
> Linked In: <a href="http://www.linkedin.com/in/andysavage" target="_blank">http://www.linkedin.com/in/andysavage</a><br>
</div></div>> ------------------------------------------------------------------------<br>
<div><div></div><div class="h5">><br>
> _______________________________________________<br>
> Users mailing list<br>
> <a href="mailto:Users@lists.opensips.org">Users@lists.opensips.org</a><br>
> <a href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
><br>
<br>
<br>
--<br>
Bogdan-Andrei Iancu<br>
<a href="http://www.voice-system.ro" target="_blank">www.voice-system.ro</a><br>
<br>
<br>
_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opensips.org">Users@lists.opensips.org</a><br>
<a href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
</div></div></blockquote></div><br></div>