SSL connection with self-signed certificate

henryhkust · March 25, 2025, 8:18am

Hi there, I build a webpage to enable outgoing calls via WebRTC and asterisk. Since I need to enable microphone use in browsers like Chrome, I need to use HTTPS rather than HTTP. This requires a certificate but I do not have a domain and a certificate from the certification authority. So I used self-signed certificates.
This requires to first go to “https://:8089” to accept the certificate before using the web call.

I wonder is there any approach that I don’t need to have this step? Or if there is another simple way to build the ssl connection?

Thanks!

oza4h07 · April 1, 2025, 8:24am

I think a LetsEncrypt DNS01 challenge cert can help in this situation (see [1]).
Such cert can be established and renewed on one box and copied to a different box when for instance, this last box is not facing the Internet.

[1] Challenge Types - Let's Encrypt

henryhkust · April 3, 2025, 3:50am

Thanks for the suggestion. I solved the problem by setting verify_client=no and verify_server for my TLS transport in pjsip.conf

Topic		Replies	Views
Web RTC Support Asterisk WebRTC	4	637	June 16, 2020
Asterisk 13.25 WEBRTC Asterisk WebRTC	5	480	December 3, 2020
webRTC connection using self-signed certificate generated using Asterisk Asterisk WebRTC	7	2320	January 5, 2023
WebRTC - Unable to register browser client to asterisk server Asterisk WebRTC	5	1108	June 24, 2022
SSL errors with WebRTC Asterisk WebRTC	5	3660	November 29, 2020

SSL connection with self-signed certificate

Related topics