[asterisk-users] Asterisk 16.14.0 pjsip transport-tls cert parsing error
Stefan Tichy
asterisk3 at pi4tel.de
Fri Jan 29 09:53:59 CST 2021
On Tue, Jan 26, 2021 at 10:12:22AM -1000, Ruisheng Peng wrote:
> The self-sign asterisk.crt:
I saved that file in "x.crt".
openssl x509 -in x.crt -noout -text
....
RSA Public-Key: (1024 bit)
....
> and Letsencrypt cert.pem:
I saved that file in "y.crt".
openssl x509 -in y.crt -noout -enddate
notAfter=Jan 29 01:24:25 2021 GMT
> There were a few mentions of this problem on the web, and one said changing
> the security mode of the certs to 755 fixed his problem.
That makes no sense.
Which version of openssl ist used on that CentOS7 box ?
In "/etc/ssl/openssl.cnf" you find something like this:
MinProtocol = TLSv1.2
CipherString = DEFAULT at SECLEVEL=2
You could set the level to "1" or even to "0" and restart Asterisk.
--
Stefan Tichy
More information about the asterisk-users
mailing list