12 Apr
2018
12 Apr
'18
3:33 p.m.
I want to enable certificate validation on the server. I am only using self-signed
certs.
I have the same certificate/key in the client and server and want to only allow
connection from clients with this cert/key.
I have turned on the following in tls.cfg and done all the steps required in kamailio.cfg
file.
[server:default]
method = TLSv1
verify_certificate = yes
require_certificate = yes
private_key = /usr/local/etc/kamailio/selfsigned.key
certificate = /usr/local/etc/kamailio/selfsigned.pem
ca_list = /usr/local/etc/sip-router/cacert.pem
[client:default]
verify_certificate = yes
require_certificate = yes
Any help is appreciated.
Thanks,
--Jignesh
24 Apr
24 Apr
9:05 p.m.
Hello,
the path provided for ca_list seems wrong compared with the rest of the
paths, do you have the two of them, one with kamailio and one with
sip-router?
Cheers,
Daniel
On 12.04.18 14:33, Jignesh Gandhi wrote:
I want to enable certificate validation on the server. I am only using
self-signed certs.
I have the same certificate/key in the client and server and want to
only allow connection from clients with this cert/key.
I have turned on the following in tls.cfg and done all the steps
required in kamailio.cfg file.
[server:default]
method =TLSv1
verify_certificate =yes
require_certificate =yes
private_key =/usr/local/etc/kamailio/selfsigned.key
certificate =/usr/local/etc/kamailio/selfsigned.pem
ca_list =/usr/local/etc/sip-router/cacert.pem
[client:default]
verify_certificate =yes
require_certificate =yes
Any help is appreciated.
Thanks,
--Jignesh
_______________________________________________
Kamailio (SER) - Users Mailing List
sr-users(a)lists.kamailio.org
https://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users
--
Daniel-Constantin Mierla
www.twitter.com/miconda -- www.linkedin.com/in/miconda
Kamailio World Conference - May 14-16, 2018 - www.kamailioworld.com
2407
days inactive
2419
days old
1 comments
2 participants
participants (2)
-
Daniel-Constantin Mierla -
Jignesh Gandhi