Create A SIP Certificate A
(Created page with "=== '''''Applies to version(s): v3.1''''' === {{DISPLAYTITLE:Configuring Certificates}} Certificates are used to provide secure connections, such as HTTPs (secure connection ...") |
|||
| Line 4: | Line 4: | ||
Certificates are used to provide secure connections, such as HTTPs (secure connection to the web portal) or [[FreeSBC]] secure SIP calls (SIP over TLS). | Certificates are used to provide secure connections, such as HTTPs (secure connection to the web portal) or [[FreeSBC]] secure SIP calls (SIP over TLS). | ||
| − | This article describes how to import or create certificates. These certificates are later grouped into TLS | + | This article describes how to import or create certificates. These certificates are later grouped into [[Toolpack:Tsbc_TLS_Profiles|TLS Profiles]], which is the first step in configuring secure SIP on [[FreeSBC]]. |
These TLS profiles can later be used to create SIP Transport servers using TLS. | These TLS profiles can later be used to create SIP Transport servers using TLS. | ||
<br> | <br> | ||
| − | == | + | == Create a Trusted Certificate == |
| − | 1. Select ''' | + | 1. Select '''Certificates''' from the navigation panel: |
| − | [[Image: | + | [[Image:ConfigureCertificates_0.png|150px]] |
| + | 2. Click ''' Create New Certificate ''' === | ||
| − | + | [[Image:ConfigureCertificates_1.png|250px]] | |
| − | + | ||
| − | + | 3. Configure the certificate parameters: | |
| + | * Provide a name that is meaningful to you. | ||
| + | * Select "Trusted" certificate to import a remote party's certificate to trust. | ||
| + | * Drag-and-drop (or copy-paste) the certificate's text content into the appropriate text box | ||
| + | * Click "Create" | ||
| − | + | [[Image:ConfigureCertificates_2.png|500px]] | |
| − | + | == Upload local certificates (optional) == | |
| − | + | Toolpack already contains, by default, a unique self-signed certificate (unique for each Toolpack system, shared for 1+1 hosts). This certificate is used for HTTPs, and can also be used for TLS. | |
| − | + | ||
| − | + | ||
| − | + | ||
| + | In case you want to use a custom local certificate (like an officially signed certificate for your domain name), proceed as follows: | ||
| − | [[Image: | + | 1. Repeat the same procedure as above (but using "Local" certificate type) to import the local certificate. |
| + | 2. Use ssh (command-line or using a tool like Filezilla) to upload the private key to the unit on the following path. | ||
| + | * Use the '''same file''' name as the local certificate name previously used to import in the web portal (except file extension): | ||
| + | /lib/tb/toolpack/pkg/ssl_certificate/ | ||
| + | |||
| + | Example: | ||
| + | |||
| + | [[Image:ConfigureCertificates_3.png|500px]] | ||
| + | |||
| + | Then: | ||
| + | scp my_local_cert.key root@MyFreeSbcHostName:/lib/tb/toolpack/pkg/ssl_certificate/ | ||
== List of Parameters == | == List of Parameters == | ||
| − | *[[Parameter: Name|Name | + | *[[Parameter: Name|Name]] |
| − | + | ||
| − | + | ||
Revision as of 09:50, 14 March 2019
Contents |
Applies to version(s): v3.1
Certificates are used to provide secure connections, such as HTTPs (secure connection to the web portal) or FreeSBC secure SIP calls (SIP over TLS).
This article describes how to import or create certificates. These certificates are later grouped into TLS Profiles, which is the first step in configuring secure SIP on FreeSBC.
These TLS profiles can later be used to create SIP Transport servers using TLS.
Create a Trusted Certificate
1. Select Certificates from the navigation panel:
2. Click Create New Certificate ===
3. Configure the certificate parameters:
- Provide a name that is meaningful to you.
- Select "Trusted" certificate to import a remote party's certificate to trust.
- Drag-and-drop (or copy-paste) the certificate's text content into the appropriate text box
- Click "Create"
Upload local certificates (optional)
Toolpack already contains, by default, a unique self-signed certificate (unique for each Toolpack system, shared for 1+1 hosts). This certificate is used for HTTPs, and can also be used for TLS.
In case you want to use a custom local certificate (like an officially signed certificate for your domain name), proceed as follows:
1. Repeat the same procedure as above (but using "Local" certificate type) to import the local certificate. 2. Use ssh (command-line or using a tool like Filezilla) to upload the private key to the unit on the following path.
- Use the same file name as the local certificate name previously used to import in the web portal (except file extension):
/lib/tb/toolpack/pkg/ssl_certificate/
Example:
Then:
scp my_local_cert.key root@MyFreeSbcHostName:/lib/tb/toolpack/pkg/ssl_certificate/
