TLS On SIP Trunk

Home » Asterisk Users » TLS On SIP Trunk
Asterisk Users No Comments

Has anyone tried to create a SIP trunk between Asterisk and a CUCM? If so has anyone enabled tls on the trunk? Would the tlscafile field in the Asterisk sip.conf be used to refer to the pem file provided by the CUCM? Is the purpose of tlscafile to refer to the other call manager’s pem file? Or would the tlscafile field need to refer to the ca.crt file created for Asterisk using the asterisk ssl tls scripts? Attempting to use self-signed certifications for both Asterisk and CUCM. Does anyone know if the asterisk.pem file (created by using the asterisk ssl tls scripts and provided to the CUCM) needs to have the Issuer CN and Subject CN identical to avoid an Unknown CA error on the client key exchange?