TLS Question

[anodin]

1. Brekeke Product Name and version:
Brekeke SIP Server , Version 3.0.6.3 Evaluation

2. Java version:
1.7.0

3. OS type and the version:
Windows Server 2008 Standard Edition

4. UA (phone), gateway or other hardware/software involved:
OpenSSL

5. Network pattern:
1

6. Your problem:
Hi! I'm trying to configure TLS handling on Brekeke's SIP Server with OpenSSL following this :
http://wiki.brekeke.com/wiki/Key-and-Certificate

I've tried several keys and certificates I've generated with OpenSSL but I've never got "TLS" to be shown at the "Transport" field in the "Server Status"

Anybody succeeded ? What kind of certificate and key are needed : CA, server, user, self-signed ?

[lakeview]

Are you using Advanced Edition of Brekeke SIP Server v3?
The TLS handling is available in the Advanced Edition only.

[anodin]

Well I'm actually using an evaluation version that, as you said, states that only advanced version handles TLS.

But as I was able to activate TLS, upload certificate /key... I guessed that it was allowed for evaluation :

http://i45.tinypic.com/2uojvr8.png

[lakeview]

Did you follow the wiki?
http://wiki.brekeke.com/wiki/Key-and-Certificate

Did you set the server's IP address as the CN (Common Name) when you made the server certificate?

Are you using any CA service?

[Harold]

It might help you.

[anodin]

Thanks you both, yeah I had pretty much the same settings but with the hostname instead of the IP.

Harold, I've followed your OpenSSL commands, I still can't see that TLS appear. Maybe evaluation version doesn't handle TLS finally.

I'm trying the diagnostic commands to see if it is working anyway.

[Harold]

Have you restart the server after you uploaded DER files?

I could use TLS at Evaluation of Advanced Edition.
If you configure TLS logs, are there any error messages?
http://wiki.brekeke.com/wiki/Monitoring-and-Diagnostic

[anodin]

Well, I had some tricky moves when I've uploaded several certs / keys before trying your solution. So I'm reinstalling the server to see what I can get from that.

Glad to know it works under evalution.

To be very clear, when you've uploaded key & cert and restarted your server, did TLS showed up in transport field ?

[Harold]

I can see "TLS" in the [transport] field at the [Server Status] page.

If there is no "TLS", there are something wrong.
Are there any error messages in the log?

[hope]

tls key and cert can be uploaded even with eval license
but cannot use if not in advanced edition

[janP]

There are two types of evaluation versions.
Evaluation and Advanced Edition's Evaluation.

It seems you are using an Evaluation and Harold is using Advanced Edition's Evaluation.

An Evaluation version doesn't have TLS handling function as hope said.

If you want to try Advanced Edition's Evaluation, fill the request form.
http://www.brekeke.com/company/company_contact_form_bss-adv.php

[anodin]

Alright ok, it's clear now. I was confused by the fact that you can select advanced version and download on Brekeke's site.

Anyway, I've asked for an advanced evaluation version.
I had asked an academic version at the very begining, never had an answer, I hope it won't be the same this time.

[anodin]

Great!!! Just got a license! I'll try it & let you know

[Mike]

Hi anodin,

Thank you for using Brekeke SIP Server.
I've asked our licensing team to send an Academic license to you.

Have fun.