]> http://www.iptel.org/taxonomy/term/257/9 System-related (Linux, application setup, etc) en http://www.iptel.org/faq/how_to_setup_sems_ivr_voice_mail <div class="flexinode-body flexinode-3"></div> sems.conf ser.cfg System Mon, 05 May 2008 10:08:21 +0200 http://www.iptel.org/ca <p>This site runs its own certificate authority for the purpose of client and server authentication using TLS/SSL. At the moment certificates generated by the certificate authority are used to secure the web server (most pages on the web server are also available through HTTPS), in the future we will also configure our <a href="http://iptel.org/service">SIP servers</a> to use TLS and issue client certificates that can be used in SIP user agents. </p><h2>How to apply for a certificate</h2><div class="note"><p>The instructions below should work on Linux (or any POSIX compatible system) with <a href="http://www.openssl.org/">OpenSSL</a> installed. </p> SSL System TLS Thu, 31 Aug 2006 13:36:03 +0200 http://www.iptel.org/admin/ldap <h2>LDAP<a href="glossary#term185" title="LDAP: Lightweight Directory Access Protocol" class="glossary-indicator">i</a>-based Authentication and Authorization</h2> <p>All iptel.org hosts (virtual and physical) are configured to authenticate users against a central LDAP database. This way we do not have to replicate accounts across all hosts and password changes are propagated to all hosts.</p> <h3>LDAP Server</h3> <p>The LDAP server is running at 192.168.0.67, backup ldap server is 192.168.0.86. Never use domain names when configuring critical services like PAM and NSS on LDAP, always use the IP address. This ensures that the service will be available even if the DNS system is down.</p> <p>Search base is dc=iptel, dc=org, this is configured in /etc/ldap/ldap.conf for LDAP tools.</p> System Fri, 05 May 2006 21:19:07 +0200