Secure VoIP
From Taridium
(Difference between revisions)
(→Creating a Key File and CA) |
|||
| Line 43: | Line 43: | ||
===Device Configuration=== | ===Device Configuration=== | ||
| + | |||
| + | ==== Aastra ==== | ||
| + | |||
| + | ==== Counterpath Bria ==== | ||
| + | |||
| + | Place the ca.crt file on a webserver and load it using your browser to store it in our operatings system's ca | ||
Revision as of 12:01, 24 August 2010
THIS PAGE IS UNDER CONSTRUCTION!
Contents |
Setting up ipbx
Configuring SIP/TLS
Creating a Key File and CA
$ openssl genrsa -des3 -out ca.key 4096
$ openssl req -new -x509 -days 365 -key ca.key -out ca.crt
Sample CA Cert
Country Name (2 letter code) [GB]:US State or Province Name (full name) [Berkshire]:New York Locality Name (eg, city) [Newbury]:New York Organization Name (eg, company) [My Company Ltd]:Taridium Organizational Unit Name (eg, section) []:engineering Common Name (eg, your name or your server's hostname) []:ipbx.taridium.net Email Address []:info@taridium.com
$ openssl genrsa -out key.pem 1024 $ openssl req -new -key key.pem -out req-ipbx_taridium.csr
Creating a Self-Signed Certificate
To create the self-signed certificate, do the following:
$ openssl x509 -req -days 365 -in req-ipbx_taridium.csr -CA ca.crt -CAkey ca.key -set_serial 01 -out cert-ipbx.cert
Installing the Certificate
$ cat key.pem > asterisk.pem $ cat cert-ipbx.cert >> asterisk.pem
$ mv asterisk.pem /etc/asterisk/ $ chown asterisk:asterisk /etc/asterisk/asterisk.pem
Setting up your Device
ipbx Configuration
Device Configuration
Aastra
Counterpath Bria
Place the ca.crt file on a webserver and load it using your browser to store it in our operatings system's ca
