Voice

Home 

>

Server Certificate Configuration

Certificates from Trusted Certified Authority is required to run Voice Server applications in Secure mode. The servers exchange these certificates with clients during a TLS handshake while establishing secure connections. Currently Message Server and Voice Server needs these certificates to run in secure mode.

Converting Certificate to PEM format using openssl:

1.To convert a PFX file to a PEM file that contains both the certificate and private key (Used by AppServer to host Click2Talk Webservice)

openssl pkcs12 -in filename.pfx -out cert.pem -nodes

2.To convert a PFX file to separate public and private key PEM files. (Used by message server to host websocket connection for ISM toolbar)

Extracts the private key from a PFX to a PEM file:

openssl pkcs12 -in filename.pfx -nocerts -out key.pem -nodes

Exports the certificate (includes the public key only):

openssl pkcs12 -in filename.pfx -nokeys -out cert.pem -nodes

Configuring Server Certificates in Host Configuration:

The path for the certificates and key files can be configured in <install_dir>\Data\Hostconfiguration.xml under the attributes "CertFile", "CertWithKeyFile" and "KeyFile" of the Certificate element.

The <install_dir> is usually C:\Program Files\FrontRange Solutions\IP Communications Management.

Example:

<Host>

<Certificate CertwithKeyFile=”C:\ServerCertificates\CertWithKey.pem” CertFile=”C:\ServerCertificates\Cert.pem” KeyFile=”C:\ServerCertificates\Key.pem”>

</Certificate>

<Host>