<div dir="ltr">If an example helps, here what I have in my script to generate the .pem files for FreeSWITCH to support WebRTC:<div><br></div><div><div># Links to .crt and .key files</div><div>ssl_dir=${script_dir}/sc_ssl_cert</div><div>sc_crt=$ssl_dir/sc.crt</div><div>sc_key=$ssl_dir/sc.key</div><div>ca_crt=$ssl_dir/gd_bundle.crt</div><div><br></div><div># create the .pem files</div><div>mkdir -p /usr/local/freeswitch/certs/</div><div>{ cat ${sc_crt}; cat ${sc_key}; cat ${ca_crt}; } > /usr/local/freeswitch/certs/wss.pem # CERT, KEY AND CHAIN files</div><div>{ cat ${sc_crt}; cat ${sc_key}; } > /usr/local/freeswitch/certs/agent.pem # CERT file AND key file</div><div>{ cat ${ca_crt}; } > /usr/local/freeswitch/certs/cafile.pem # CHAIN file or root CA</div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Sat, Mar 5, 2016 at 4:11 AM, Brian West <span dir="ltr"><<a href="mailto:brian@freeswitch.org" target="_blank">brian@freeswitch.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Chain is the ca, cert is your cert<div><div><span></span><br><br>On Saturday, March 5, 2016, Gregor Nanger <<a href="mailto:gregor@infomedia.si" target="_blank">gregor@infomedia.si</a>> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div class="gmail_default" style="font-family:'trebuchet ms',sans-serif">Hi!</div><div class="gmail_default" style="font-family:'trebuchet ms',sans-serif"><br></div><div class="gmail_default" style="font-family:'trebuchet ms',sans-serif">I bought wildcard certificate for using it with freeswitch. </div><div class="gmail_default" style="font-family:'trebuchet ms',sans-serif"><br></div><div class="gmail_default" style="font-family:'trebuchet ms',sans-serif">Now I have hard time to install it into Freeswitch and would appreciate any help.</div><div class="gmail_default" style="font-family:'trebuchet ms',sans-serif"><br></div><div class="gmail_default" style="font-family:'trebuchet ms',sans-serif">I have private key (generated at CSR request), certificate issued by authority and root certificate from authority. Now I do not know where to enter certficate. According to documentation I assume that this is correct:</div><div class="gmail_default" style="font-family:'trebuchet ms',sans-serif"><div class="gmail_default">Cert, Key and Chain(s) are all contained in a single file in this order:</div><div class="gmail_default"> </div><div class="gmail_default">-----BEGIN CERTIFICATE-----</div><div class="gmail_default"><cert></div><div class="gmail_default">-----END CERTIFICATE-----</div><div class="gmail_default">-----BEGIN RSA PRIVATE KEY-----</div><div class="gmail_default"><key></div><div class="gmail_default">-----END RSA PRIVATE KEY-----</div><div class="gmail_default">-----BEGIN CERTIFICATE-----</div><div class="gmail_default"><chain></div><div class="gmail_default">-----END CERTIFICATE-----</div><div class="gmail_default"><br></div><div class="gmail_default">What is puzzling me is if this is correct:</div><div class="gmail_default"><cert> = root certificate from authority</div><div class="gmail_default"><key> = private key</div><div class="gmail_default"><chain> = public certificate issued by authority</div><div class="gmail_default"><br></div><div class="gmail_default">Would this work?</div></div><div></div>
<img src="http://t.sidekickopen42.com/e1t/o/5/f18dQhb0S7ks8dDMPbW2n0x6l2B9gXrN7sKj6v5dbp0W3MPnzY4XrbSMW8q-f_43LvrVvW59BB4r1k1H6H0?si=5036397111279616&pi=c1746309-37d2-4b05-8f34-0e8d101de61e" style="display:none!important" height="1" width="1"></div>
</blockquote><br><br></div></div><br></blockquote></div><br></div></div>