<div dir="ltr">Hello All<div><span style="background-color:rgba(32,33,36,0.04);color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap"><br></span></div><div><span style="background-color:rgba(32,33,36,0.04);color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap">I am testing STIR/SHAKEN calls using two servers. </span><br></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)">
calls originating to the first server adding identity header and when sending calls to the second server for verification service at the time of verification service i am getting below error . </span></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)"><br></span></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)">error :437 , Unsupported Credential , Verification Fails with Return code :-8
INFO:stir_shaken:verify_callback: certificate validation failed: self signed certificate
INFO:stir_shaken:w_stir_verify: Invalid certificate</span></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)">OpenSIPS Version : 3.2.2
I generate certificate using domain which mapped with those 2 server : </span><a href="https://github.com/OpenSIPIt/OpenSIPIt_00/blob/master/STIR_SHAKEN/Certgen/gencert.sh" target="_blank" dir="ltr" rel="noopener nofollow noreferrer" class="gmail-oiM5sf" style="text-decoration-line:none;background:rgba(32,33,36,0.04);font-size:14px;margin:0px;padding:0px;vertical-align:baseline;font-family:Roboto,sans-serif;white-space:pre-wrap">https://github.com/OpenSIPIt/OpenSIPIt_00/blob/master/STIR_SHAKEN/Certgen/gencert.sh</a><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)">
<br></span></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)">When the same server generates an identity header and verifies it at that time not getting an issue call is working fine but when the identity header generated by server 1 and going to verify it by server 2 we get this above error.
<br></span></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)">Is it related to the URL which is in the info param ?
When I open that URL in the browser I am able to see the certificate. </span></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)"><br></span></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)">Please suggest a solution for this issue.</span><br></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)"><br></span></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)">Regards </span></div><div><span style="color:rgb(32,33,36);font-family:Roboto,sans-serif;font-size:14px;white-space:pre-wrap;background-color:rgba(32,33,36,0.04)">Devang Dhandhalya</span></div></div>
<br>
<div><font face="Arial" size="2" style="background-color:white" color="#808080"><b>Disclaimer</b></font></div><div><div><span style="background-color:white;color:rgb(128,128,128);font-family:Arial;font-size:small">In addition to generic Disclaimer which you have agreed on our website, any views or opinions presented in this email are solely those of the originator and do not necessarily represent those of the Company or its sister concerns. Any liability (in negligence, contract or otherwise) arising from any third party taking any action, or refraining from taking any action on the basis of any of the information contained in this email is hereby excluded.</span></div></div><div><span style="background-color:white;color:rgb(128,128,128);font-family:Arial;font-size:small"><br></span></div><div><font face="Arial" size="2" style="background-color:white" color="#808080"><b>Confidentiality</b></font></div><div><font face="Arial" size="2" style="background-color:white" color="#808080">This communication (including any attachment/s) is intended only for the use of the addressee(s) and contains information that is PRIVILEGED AND CONFIDENTIAL. Unauthorized reading, dissemination, distribution, or copying of this communication is prohibited. Please inform originator if you have received it in error.</font></div><div><font face="Arial" size="2" style="background-color:white" color="#808080"><br></font></div><div><span style="background-color:white;color:rgb(128,128,128);font-family:Arial;font-size:small"><b>Caution for viruses, malware etc.</b></span></div><div><font face="Arial" size="2" style="background-color:white" color="#808080">This communication, including any attachments, may not be free of viruses, trojans, similar or new contaminants/malware, interceptions or interference, and may not be compatible with your systems. You shall carry out virus/malware scanning on your own before opening any attachment to this e-mail. The sender of this e-mail and Company including its sister concerns shall not be liable for any damage that may incur to you as a result of viruses, incompleteness of this message, a delay in receipt of this message or any other computer problems. </font></div>