Customers
User information
 Loading ...
Show article in Knowledge Base

 5. Installing/loading certificate (Optional) Export knowledge base Export     SubscribeSubscribe      Show article info

Installing/loading certificate to the Tigase server

PEM file is a file containing server certificate, certificate private key and certificate chain if it exists. For self-signed certificates there is no certificate chain so creating pem file is very simple:

1 cat yourdomain.com.crt yourdomain.com.key > yourdomain.com.pem

If the certificate is issued by third-party authority you have also to attach certificate chain, that is certificate of the authority who has generated your certificate. You normally need to obtain certificates for your chain from the authority who has generated your certificate. For example, of you have a certificate from XMPP federation you need to download StartCom root certificate and ICA certificate. In such case pem file is created using following command:

1 cat yourdomain.com.crt yourdomain.com.key sub.class1.xmpp.ca.crt ca.crt > yourdomain.com.pem

Result file should looks similar to:

01 -----BEGIN CERTIFICATE-----
02 MIIG/TCCBeWgAwIBAgIDAOwZMA0GCSqGSIb3DQEBBQUAMIGMMQswCQYDVQQGEwJJ
03 .
04 .
05 .
06 pSLqw/PmSLSmUNIr8yQnhy4=
07 -----END CERTIFICATE-----
08 -----BEGIN RSA PRIVATE KEY-----
09 WW91J3JlIGtpZGRpbmchISEKSSBkb24ndCBzaG93IHlvdSBvdXIgcHJpdmF0ZSBr
10 .
11 .
12 .
13 ZXkhISEhCkNyZWF0ZSB5b3VyIG93biA7KSA7KSA7KQo=
14 -----END RSA PRIVATE KEY-----
15 -----BEGIN CERTIFICATE-----
16 MIIHyTCCBbGgAwIBAgIBATANBgkqhkiG9w0BAQUFADB9MQswCQYDVQQGEwJJTDEW
17 .
18 .
19 .
20 xV/stleh
21 -----END CERTIFICATE-----

Tigase Server configuration

Put following line in your init.properties file:

1 --ssl-container-class=tigase.extras.io.PEMSSLContextContainer

Copy all your pem files with certificates into certs/ subdirectory in Tigase server installation, stop the server, remove XML configuration file and start the server


User comments
 Loading ...