[asterisk-users] Let's encrypt privkey : Specified certificate file could not be used

James Cloos cloos at jhcloos.com
Sat Jun 3 01:09:29 CDT 2017

>>>>> "JK" == Jonas Kellens <jonas.kellens at telenet.be> writes:

JK> [Jun  2 14:29:28] ERROR[27360][C-00000ae5]: res_rtp_asterisk.c:1441
JK> ast_rtp_dtls_set_configuration: Specified certificate file
JK> '/etc/letsencrypt/live/ws.mydomain.tld/privkey.pem' for RTP instance
JK> '0x7f920c538a78' could not be used

That error means that openssl's SSL_CTX_use_certificate_file() returned
an error.

The later error is just a result of that one.

Does the uid/gid used for asterisk have access to the key?

If the uid you use for asterisk is called asterisk, run this as root:

su -c 'cat /etc/letsencrypt/live/ws.mydomain.tld/privkey.pem' - asterisk

If it fails, then the problem is permissions.

You may need to alter the permissions on /etc/letsencrypt to allow
non-root uids to access the symlinks and their targets.

James Cloos <cloos at jhcloos.com>         OpenPGP: 0x997A9F17ED7DAEA6

More information about the asterisk-users mailing list