Brekeke Documents

Find user guides, developer guides, API references, tutorials, and more!

Brekeke SIP Server Wiki

  1. Brekeke SIP Server Basic Info
  2. Security
  3. Update & Upgrade
  4. Configuration
    1. Installation
    2. Basic Setup
    3. BSS Administration Tool
    4. Network Configuration
    5. Dial Plan
    6. Block List
    7. Provisioning
    8. Push Notification
    9. SDN
    10. STIR/SHAKEN
    11. Advanced Edition
      1. Alias function
      2. Call detailed records (CDR)
      3. Failover
      4. Load balancing by BSS
      5. RADIUS
      6. TLS
        1. Key and Certificate
        2. How to create a self-signed certificate using OpenSSL
        3. How to install a certificate chain
        4. Peer Certification Validation
        5. Environment Variables for TLS
        6. Monitoring and Diagnostic
        7. How to convert TLS to another transport protocol (UDP,TCP)
      7. SRTP Conversion
      8. Redundancy
      9. Brekeke Heartbeat Remote Access Setup
      10. Brekeke SIP Server Failure Notification
      11. Heavy loads alert with Brekeke Heartbeat
      12. Monitoring SIP Devices with Heartbeat
    12. Other Functions
    13. Third-Party Database
    14. Environment Variables
  5. Troubleshooting
  6. Developer's Guide
  7. Version History

How to install a certificate chain

1. Generate a Keystore

keytool -keysize 2048 -genkey -alias brekeke -keyalg RSA -keystore keystore.jks

2. Generate a CSR (Certificate Signing Request). In this example, the CSR file is “server.csr”

keytool -certreq -keyalg RSA -alias brekeke -file server.csr -keystore keystore.jks

3. Request CA to sign “server.csr”

4. Import the root certificate into the keystore. (optional)

In this example, the root certificate file is “root-ca.crt”

keytool -import -alias root -keystore keystore.jks -trustcacerts -file root-ca.crt

5. Import the intermediate certificate into the keystore

In this example, the intermediate certificate file is “intermediate-ca.crt”

keytool -import -alias ica -keystore keystore.jks -trustcacerts -file intermediate-ca.crt

6. Import the issued server certificate into the keystore

In this example, the server certificate file is “server.crt”

keytool -import -alias brekeke -keystore keystore.jks -trustcacerts -file server.crt

7. Go to Brekeke SIP Server Admintool > [Configuration] >[SIP] page,  [TLS] section

– Upload the JKS file (keystore.jks) at the [JKS Key File] field
– Set the password of the JKS file (keystore.jks) at the [JKS Password ] field

 

8. Restart Brekeke SIP Server from Admintool

Yes No
« How to create a self-signed certificate using OpenSSLPeer Certification Validation »
Suggest Edit