How does one add a locally trusted CA to Asterisk 16? I’m trying to add the CA for my AD environment to my asterisk servers.
jcolp
June 1, 2021, 10:11pm
2
For what purpose are you adding the CA?
LDAP integration. CA is local server running Microsoft AD Certificate Services. Not clear if asterisk only uses CA that the OS uses, or if it has it’s own store.
(full disclosure: posted over in freepbx too)
I haven’t used it myself, but the following look relevant:
; sip.conf = ldap,"dc=myDomain,dc=myDomainExt",config
;
; In the case of LDAP the last keyword in each line above specifies
; a section in this file.
;
; LDAP schema and ldif files can be located in contrib/scripts.
; TLS support
; -----------
; Note that you can configure an ldaps: url here to get TLS support.
; Detailed configuration of certificates and supported CAs is done in your
; ldap.conf file for OpenLDAP clients on your system.
; This requires that you have OpenLDAP libraries compiled with TLS support
; *********************************************************************************
; NOTE: res_ldap.conf should be chmod 600 because it contains the plain-text LDAP
; password to an account with WRITE access to the asterisk configuration.
; *********************************************************************************
[_general]
;
https://www.openldap.org/software//man.cgi?query=ldap.conf&sektion=5&apropos=0&manpath=OpenLDAP+2.4-Release#TLS_OPTIONS
jcolp
June 1, 2021, 11:56pm
5
I don’t believe the FreePBX LDAP integration uses anything Asterisk provides, and is its own thing.
Got it, wasn’t sure if freepbx used asterisk for this or not.
Thanks!
system
Closed
July 2, 2021, 9:37pm
7
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.