We have seen issues with self-signed certs, I've managed to get it to work on windows by importing the cert into the trusted root ca store.
Linux has issued with this and it seems to be flash related. Can you test on IE? Stephen Cottham Group IT Manager (Associate) Robert Bird Group Level 5, 333 Ann St Brisbane, Queensland, 4000, Australia Phone: +6173 319 2777 (AUS) Phone: +44207 633 2880 (UK) Fax: +6173 319 2799 Mobile: +61400 756 963 (AUS) Mobile: +447900 918 616 (UK) Web: www.robertbird.com This email and any attachments are confidential and may contain legally privileged information or copyright material. Unless expressly stated, confidentiality and/or legal privilege is not intended to be waived by the sending of this email. The contents of this email, including any attachments, are intended solely for the use of the individual or entity to whom they are addressed. If you are not an intended recipient, please contact us immediately by return email and then delete both messages. You may not otherwise read, forward, copy, use or disclose this email or any attachments. Any views expressed in this email are those of the individual sender except where the sender expressly, and with authority, states otherwise. It is your responsibility to check any attachments for viruses or defects before opening or sending them on. None of the sender or its related entities accepts any liability for any consequential damage resulting from this email containing computer viruses. Disclaimer added by CodeTwo Exchange Rules http://www.codetwo.com -----Original Message----- From: Vieri [mailto:rentor...@yahoo.com] Sent: 20 February 2013 12:14 To: user@openmeetings.apache.org Subject: RE: OM https The server is Linux, the client is Windows. It may be a cert issue though... I just don't know how to determine what's wrong. --- On Wed, 2/20/13, Stephen Cottham <stephen.cott...@robertbird.com.au> wrote: > Is this on Linux by chance? > > -----Original Message----- > From: Vieri [mailto:rentor...@yahoo.com] > > Sent: 20 February 2013 12:09 > To: user@openmeetings.apache.org > Subject: RE: OM https > > I don't see any errors except the ones already listed below. > I'm using Firefox and the cert is self signed. > I added a temporary security exception for my site. > > --- On Wed, 2/20/13, Stephen Cottham > <stephen.cott...@robertbird.com.au> > wrote: > > > And there was definitely no errors > > from the start-up using red5-debug.sh ? > > > > If you click on the https padlock does it show as > valid? > > > > What browser are you using? > > > > Is the cert self signed? > > > > > > > > Stephen Cottham > > Group IT Manager (Associate) > > > > Robert Bird Group > > Level 5, 333 Ann St > > Brisbane, Queensland, 4000, Australia > > Phone: +6173 319 2777 (AUS) > > Phone: +44207 633 2880 (UK) > > Fax: +6173 319 2799 > > > > Mobile: +61400 756 963 (AUS) > > Mobile: +447900 918 616 (UK) > > Web: www.robertbird.com > > > > > > This email and any attachments are confidential and may > contain > > legally privileged information or copyright material. > Unless expressly > > stated, confidentiality and/or legal privilege is not > intended to be > > waived by the sending of this email. The contents of > this email, > > including any attachments, are intended solely for the > use of the > > individual or entity to whom they are addressed. If you > are not an > > intended recipient, please contact us immediately by > return email and > > then delete both messages. You may not otherwise read, > forward, copy, > > use or disclose this email or any attachments. Any > views expressed in > > this email are those of the individual sender except > where the sender > > expressly, and with authority, states otherwise. It is > your > > responsibility to check any attachments for viruses or > defects before > > opening or sending them on. None of the sender or its > related entities > > accepts any liability for any consequential damage > resulting from this > > email containing computer viruses. > > > > Disclaimer added by CodeTwo Exchange Rules > > > > http://www.codetwo.com > > > > -----Original Message----- > > From: Vieri [mailto:rentor...@yahoo.com] > > > > Sent: 20 February 2013 11:59 > > To: user@openmeetings.apache.org > > Subject: RE: OM https > > > > It seems to be listening: > > > > # sudo netstat -plnt | grep ':5443' > > tcp6 0 0 > > :::5443 > > :::* > > LISTEN > > 30944/java > > # sudo netstat -plnt | grep ':443' > > tcp6 0 0 > > :::443 > > :::* > > LISTEN > > 30944/java > > > > There's no firewall in between. The client and server > are on the same > > LAN. > > > > > > --- On Wed, 2/20/13, Stephen Cottham > > <stephen.cott...@robertbird.com.au> > > wrote: > > > > > Can you confirm the system is > > > listening on that port. > > > > > > Oh, and you did restart the server instance after > > making changes? > > > > > > -----Original Message----- > > > From: Vieri [mailto:rentor...@yahoo.com] > > > > > > Sent: 20 February 2013 11:50 > > > To: user@openmeetings.apache.org > > > Subject: RE: OM https > > > > > > The client debugger at maindebug.as3.swf10.swf > shows me > > the > > > following: > > > > > > onselect «<anonymous > > > extends='labeldTextListItem'>#1#0| > > > /anonymous/@interior/@content/anonymous» null > false > > > INFO: #_mainbgcontentNavi.setContextMenu is > > deprecated. Use > > > #_mainbgcontentNavi.setAttribute instead > > > main.lzx/oninit: «<anonymous > > extends='canvas'>#7#6| This is the > > > canvas» ondata ondata main.lzx/config.xml ondata > > «<anonymous > > > extends='canvas'>#7#6| This is the canvas» > > userSSLString yes > > > lc_SID: 604920 > > > _url > > > https://myserver/openmeetings/maindebug.swf8.swf?lzproxied=solo&lc > > > _S > > > ID > > > =604920 https://myserver/openmeetings/maindebug.swf8.sw > > > isNotPort80: -1 6 > > > this zielnr: «<anonymous > > extends='canvas'>#7#6| This is the canvas» > > > myserver > > > INFO: ###################### -1 > > > INFO: invitationHash :: undefined > > > > > > INFO: ###################### -2 > > > devRtmpConnection/registerMethods() > > > error > > NetConnection.Connect.CertificateUntrustedSigner > > > rtmps://myserver:5443/openmeetings/hibernate null > > false > > > devRtmpConnection/registerMethods() > > > error > > NetConnection.Connect.CertificateUntrustedSigner > > > rtmps://myserver:5443/openmeetings/hibernate null > > false > > > devRtmpConnection/registerMethods() > > > error > > NetConnection.Connect.CertificateUntrustedSigner > > > rtmps://myserver:5443/openmeetings/hibernate null > > false > > > devRtmpConnection/registerMethods() > > > error > > NetConnection.Connect.CertificateUntrustedSigner > > > rtmps://myserver:5443/openmeetings/hibernate null > > false > > > labelerrorPopup: Error Missing [556] > > > INFO: /labelerrorPopup/@_resizeview.setColor is > > deprecated. Use > > > /labelerrorPopup/@_resizeview.setAttribute > instead > > error > > > NetConnection.Connect.Failed > > > rtmps://myserver:5443/openmeetings/hibernate null > > false > > > labelerrorPopup: Error Missing [556] > > > INFO: /labelerrorPopup[2]/@_resizeview.setColor > is > > deprecated. Use > > > /labelerrorPopup[2]/@_resizeview.setAttribute > instead > > > > > > So I guess my rtmps is failing at port 5443... but > I > > did > > > set: > > > red5/conf/red5.properties: rtmps.port=5443 > > > red5/webapps/openmeetings/config.xml: > > > <rtmpsslport>5443</rtmpsslport> > > > > > > Any suggestions? > > > > > > --- On Wed, 2/20/13, Stephen Cottham > > > <stephen.cott...@robertbird.com.au> > > > wrote: > > > > > > > cp red5/conf/keystore > > > > red5/conf/keystore.screen > > > > > > > > will work fine. > > > > > > > > And the config should be > > > > > > > > <protocol>https</protocol> > > > > <red5httpport>443</red5httpport> > > > > > > > > Best Regards > > > > > > > > > > > > > > > > Stephen Cottham > > > > Group IT Manager (Associate) > > > > > > > > Robert Bird Group > > > > Level 5, 333 Ann St > > > > Brisbane, Queensland, 4000, Australia > > > > Phone: +6173 319 2777 (AUS) > > > > Phone: +44207 633 2880 (UK) > > > > Fax: +6173 319 2799 > > > > > > > > Mobile: +61400 756 963 (AUS) > > > > Mobile: +447900 918 616 (UK) > > > > Web: www.robertbird.com > > > > > > > > > > > > This email and any attachments are > confidential > > and may > > > contain > > > > legally privileged information or copyright > > material. > > > Unless expressly > > > > stated, confidentiality and/or legal > privilege is > > not > > > intended to be > > > > waived by the sending of this email. The > contents > > of > > > this email, > > > > including any attachments, are intended > solely for > > the > > > use of the > > > > individual or entity to whom they are > addressed. > > If you > > > are not an > > > > intended recipient, please contact us > immediately > > by > > > return email and > > > > then delete both messages. You may not > otherwise > > read, > > > forward, copy, > > > > use or disclose this email or any > attachments. > > Any > > > views expressed in > > > > this email are those of the individual > sender > > except > > > where the sender > > > > expressly, and with authority, states > otherwise. > > It is > > > your > > > > responsibility to check any attachments for > > viruses or > > > defects before > > > > opening or sending them on. None of the > sender or > > its > > > related entities > > > > accepts any liability for any consequential > > damage > > > resulting from this > > > > email containing computer viruses. > > > > > > > > Disclaimer added by CodeTwo Exchange Rules > > > > > > > > http://www.codetwo.com > > > > > > > > -----Original Message----- > > > > From: Vieri [mailto:rentor...@yahoo.com] > > > > > > > > Sent: 20 February 2013 11:36 > > > > To: user@openmeetings.apache.org > > > > Subject: OM https > > > > > > > > Hi, > > > > > > > > I followed the steps at > > > > http://openmeetings.apache.org/RTMPSAndHTTPS.html but > > > I'm having > > > > trouble connecting. > > > > > > > > First of all I'm unsure as to 2 of the > points > > listed on > > > that page. > > > > > > > > <Quote> > > > > Configuring RTMPS for the Flash Client 7. > Create > > > additional > > > > certificate as described above. Add this > > certificate to > > > the following > > > > keystores: > > > > red5/conf/keystore.screen and > > > > red5/conf/keystore. > > > > </Quote> > > > > > > > > What does that mean? > > > > I created red5/conf/keystore. > > > > Do I need to create another key store as > > > red5/conf/keystore.screen? > > > > Should it contain exactly the same > certificates? > > If so, > > > would this be > > > > enough?: > > > > cp red5/conf/keystore > red5/conf/keystore.screen > > > > > > > > <Quote> > > > > SSL for the web interface > > > > 3. Edit red5/webapps/openmeetings/config.xml > and > > set > > > red5httpport to > > > > https port </Quote> > > > > > > > > Does that mean that red5httpport=443 ? > > > > > > > > Anyway, if I don't create > > red5/conf/keystore.screen and > > > I set > > > > red5httpport=443 (along with the rest of the > > > instructions) then I get > > > > the following in the log when I try to > connect to > > > > > > https://myserver:443/openmeetings/. > > > > > > > > [WARN] [NioProcessor-21] > > > > org.red5.server.net.rtmps.RTMPSMinaIoHandler > - > > > Exception caught > > > > Connection reset by peer [WARN] > [NioProcessor-21] > > > > > > org.red5.server.net.rtmps.RTMPSMinaIoHandler > - > > > Exception caught Broken > > > > pipe [WARN] [NioProcessor-21] > > > > org.red5.server.net.rtmps.RTMPSMinaIoHandler > - > > > Exception caught null > > > > [WARN] [NioProcessor-23] > > > org.red5.server.net.rtmps.RTMPSMinaIoHandler > > > > - Exception caught Connection reset by peer > > [WARN] > > > [NioProcessor-23] > > > > org.red5.server.net.rtmps.RTMPSMinaIoHandler > - > > > Exception caught Broken > > > > pipe [WARN] [NioProcessor-23] > > > > org.red5.server.net.rtmps.RTMPSMinaIoHandler > - > > > Exception caught null > > > > [WARN] [Red5_Scheduler_Worker-2] > > > > org.red5.server.net.rtmp.RTMPConnection > > > > - Closing RTMPMinaConnection from > 10.215.144.48 : > > 50308 > > > to null (in: > > > > 461 out 1971 ), with id 1 due to long > handshake > > [WARN] > > > > > > > [Red5_Scheduler_Worker-4] > > > org.red5.server.net.rtmp.RTMPConnection - > > > > Closing RTMPMinaConnection from 10.215.144.48 > : > > 50310 > > > to null (in: > > > > 0 out 0 ), with id 2 due to long handshake > [WARN] > > > > > > [Red5_Scheduler_Worker-3] > > > org.red5.server.net.rtmp.RTMPConnection - > > > > Closing RTMPMinaConnection from 10.215.144.48 > : > > 50309 > > > to null (in: > > > > 461 out 1971 ), with id 3 due to long > handshake > > [WARN] > > > > > > > [Red5_Scheduler_Worker-1] > > > org.red5.server.net.rtmp.RTMPConnection - > > > > Closing RTMPMinaConnection from 10.215.144.48 > : > > 50311 > > > to null (in: > > > > 470 out 1912 ), with id 4 due to long > handshake > > [WARN] > > > > > > > [Red5_Scheduler_Worker-2] > > > org.red5.server.net.rtmp.RTMPConnection - > > > > Closing RTMPMinaConnection from 10.215.144.48 > : > > 50312 > > > to null (in: > > > > 461 out 1971 ), with id 5 due to long > handshake > > [WARN] > > > > > > > [Red5_Scheduler_Worker-4] > > > org.red5.server.net.rtmp.RTMPConnection - > > > > Closing RTMPMinaConnection from 10.215.144.48 > : > > 50313 > > > to null (in: > > > > 144 out 0 ), with id 6 due to long handshake > > [WARN] > > > > [Red5_Scheduler_Worker-3] > > > org.red5.server.net.rtmp.RTMPConnection - > > > > Closing RTMPMinaConnection from 10.215.144.48 > : > > 50314 > > > to null (in: > > > > 461 out 1971 ), with id 7 due to long > handshake > > [WARN] > > > > > > > [Red5_Scheduler_Worker-1] > > > org.red5.server.net.rtmp.RTMPConnection - > > > > Closing RTMPMinaConnection from 10.215.144.48 > : > > 50315 > > > to null (in: > > > > 470 out 1971 ), with id 8 due to long > handshake > > > > > > > > On the web browser client I get a NetConnection.Connect.Failed > > > > message. > > > > > > > > What am I missing? > > > > > > > > Thanks, > > > > > > > > Vieri > > > > > > > > > > > > > > > > > > > >
