I have an asterisk server installed with Version 16X on Centos 7X.
Presently I have configured the SIP over the TLS method as per the asterisk link Secure Calling Tutorial - Asterisk Project - Asterisk Project Wiki
I have generated the Server and client key as per the documents.
Below is my SIP configuration
And am using my sip peers with TLS and reception method same as the docuement.
secret=somepasword ;note that this is NOT a secure password
But my softphone (I use Blink and Zoiper, Counterpath) connects to the server without any client certificate. I dont think this is how it suppose to work. But I see this label in my softphone saying that I use tls as transport, and I can make calls.
I dont even see “tlsverifyclient” in the config sample for a sip. I think this is only a pjsip thing, and unfortunately, I can’t quickly migrate to pjsip.
Is this the right way of SIP Over TLS work ? Or is there an option which am missing ?
why do we even need a client certificate if that is able to register without client certificate?