Import CA root and intermediate server CA certificates

[a.abbas...@gmail.com]

I have a signed certificate from startssl.com, and trying to configure kurento to use that certificate:

I did configure kurento for wss as follows:

/etc/kurento/kurento.conf.json

{
  "mediaServer" : {
    "net" : {
      "websocket": {
        "port": 8888,
        "secure": {
          "port": 8889,
          "certificate": "/etc/kurento/startssl.p12",
          "password": "MY_PASS"
        },
        "path": "kurento",
        "threads": 10
      }
    }
  }
}

~/kurento-tutorial-node/kurento-one2many-call/server.js

var argv = minimist(process.argv.slice(2),
{
  default:
  {
    as_uri: "https://mydomain.com:8089/",
    ws_uri: "wss://mydomain.com:8889/kurento"
  }
});
...

/*
 * Server startup
 */


var asUrl = url.parse(argv.as_uri);
var port = asUrl.port;
var server = https.createServer({
 rejectUnauthorized: false,
  key: fs.readFileSync('/etc/kurento/startssl.key'),
  cert: fs.readFileSync('/etc/kurento/startssl.crt'),
  ca: [
  fs.readFileSync('/etc/kurento/sub.class2.server.ca.pem', 'utf8'),
  fs.readFileSync('/etc/kurento/ca.pem', 'utf8')
  ]
}, app).listen(port, function() {
 console.log('Kurento Tutorial started');
 console.log('Open ' + url.format(asUrl) + ' with a WebRTC capable browser');
});

And the client as follows:

var ws = new WebSocket('wss://' + location.host + '/call');

My problem is that I keep getting the following error in kurento media-server.log

error KurentoWebSocketTransport WebSocketTransport.cpp:190 operator()() Error while setting up tls use_certificate_chain_file: no start line

Do I have to import StartCom CA root and intermediate server CA certificates into kurento keystore (no idea how to do that)? or do I miss something?

[Ahmed Abbas]

Problem solved!

Merging the Intermediate server CA certificate with both KEY/CRT into a single PEM solved my issue!

[Ivan Gracia]

Good to know! Thanks for the update.

Cheers,

Ivan Gracia

--
You received this message because you are subscribed to the Google Groups "kurento" group.
To unsubscribe from this group and stop receiving emails from it, send an email to kurento+u...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[Francisco Javier Gonzalez Saiz]

Hi 

I am having this problem too, i am using startss.

error KurentoWebSocketTransport WebSocketTransport.cpp:190 operator()() Error while setting up tls use_certificate_chain_file: no start line

How did you merge CA cert with KEY and CERT?

Where did you find CA cert?

I will appreciate your help with this situation.

[Javier Lopez Fernandez]

You just put all certificates and keys in the same file

--
You received this message because you are subscribed to the Google Groups "kurento" group.
To unsubscribe from this group and stop receiving emails from it, send an email to kurento+u...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Javier Lopez Fernandez

fjl...@naevatec.com

[Francisco Javier Gonzalez Saiz]

Thank you 

It´s tue i have just concantenate with gedit and it works

--
You received this message because you are subscribed to a topic in the Google Groups "kurento" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/kurento/oJpXxSdeVvI/unsubscribe.
To unsubscribe from this group and all its topics, send an email to kurento+u...@googlegroups.com.