Set up a custom SSL certificate
You need the following to successfully set up a custom SSL certificate:
- The Platform APIs
- A PBX file with the certificate
- An SSH private/public key pair.
|
Note How to generate an SSH key is outside the scope of this document. |
To set up the custom SSL certificate:
- In the Vidyo Console, set up a VidyoPlatform API user.
- Use the SSL_InstallPFX API to install the PFX on the server. SSL_InstallPFX is used to install password protected .pfx files. This install is done in two steps:
- Use the VidyoUpload Platform API to upload the .pfx file to the VidyoEvent Service server.
kram@test-machine: ~$ cat name-of-file.pfx | ssh apiuser@10.10.10.10 VidyoUpload
12+1 records in
12+1 records out
6261 bytes (6.3 kB, 6.1 KiB) copied, 0.000115537 s, 54.2 MB/s
The second method is to pass a remote URL to the command:
echo -n ********** | ssh apiuser@10.10.10.10 SSL_InstallPFX http://updates.vidyo.com/VidyoWebRTC/VidyoQA.com.pfx
Cert: /C=US/ST=New Jersey/L=Hackensack/O=Vidyo, Inc./CN=*.vidyoqa.com
Cert Chain: /C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
Cert Chain: /C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert Global Root CA
CA Certs: 3
WARNING: Skipping duplicate certificate self-cert.pem
- Run the SSL_InstallPFX Platform API to install the .pfx file:
kram@test-machine: ~$ echo -n ********** | ssh apiuser@10.10.10.10 SSL_InstallPFX
Cert: /C=US/ST=New Jersey/L=Hackensack/O=Vidyo, Inc./CN=*.vidyoqa.com
Cert Chain: /C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
Cert Chain: /C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert Global Root CA
CA Certs: 3
WARNING: Skipping duplicate certificate self-cert.pem
- Reboot your server to apply the configurations.