Failed Certificate for WebRTC

Hi Everyone!

I need your help

I’m tring to use my Asterisk 11 with Webrtc modules. However after i created ther “certificates” and put then on endpoint the asterisk console show these errors:

Problem setting up ssl connection: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca
[Feb 28 17:09:32] WARNING[2979]: tcptls.c:683 handle_tcptls_connection: FILE * open failed!

version = asterisk-11.25.3

Can anyone tell me where the error is coming from?

Does Asterisk 11 work with webrtc and chan_sip?

The error looks like it’s due to Unknown Certificate Authority.

But I think the bigger issue is that you’re still running Asterisk 11.

My understanding is that WebRTC is a moving target. As such there is no point in trying to support it on anything but the latest version fo Asterisk. Asterisk 11 doesn’t even have chan_pjsip, the only channel driver for which WebRTC will be actively supported.

As already noted, the immediate fault is that you are trying to validate a client certificate that is signed by someone you have’t told Asterisk to trust.

Yes but we have very problem because the product (php +postgre) is running above ( Centos 6.9 + Asterisk 1.8 )release and I need upgrade the core to eleven version yet.

If we upgrate to Asterisk’s 13 or heigthter, we are knocked out wuth WARNING messages.
The core recived hard changes
It is very hard change in this case.


I’ll do it on asterisk 12 and let you know here. I can’t go up to a very recent version, because my product runs on Centos 6.9 and Asterisk 1.8, so a lot of the function was changed inside the core.

Hello everyone, apparently I managed to generate the certificates through Asterisk 12. Thank you

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.