Support forum

sp_Search Search
Advanced Search
Advanced Search

— Forum Scope —




— Match —





— Forum Options —





Minimum search word length is 3 characters - maximum search word length is 84 characters

sp_Search Search
Go to Bottom
sp_TopicIcon
TLS 1.2 Setup
sp_NewPost Add Reply sp_NewTopic Add Topic
January 29, 2020
11:36 am
Henk Helmantel
Admin
Forum Posts: 1488
Member Since:
May 28, 2013
sp_UserOfflineSmall Offline
sp_UserWebsite
Go to Top
4sp_Permalink sp_Print sp_QuotePost Quote

The certificate creator in Diafaan SMS Server does not write Subject Alternative Names (SAN) field in the certificate. SANs are used to store multiple IP addresses and DNS names in the certificate so that it can validate the server with more than one IP address or DNS name. The SAN field is usually not necessary in the certificate, you should just fill in the IP address (138.201.XX.XX) in the 'Host name (FQDN) or IP address' field of the certificate generator. But some SSL SMPP clients might require a SAN field anyway, even if the IP address is in the subject name of the certificate.

If you send me the list of IP addresses and DNS names that you need in the certificate, I can generate a certificate for you that includes the SANs. However, this is not a guarantee that the certificate will be accepted by the SMPP client. It might require a certificate that is signed by a trusted root certificate authority.

Regards, Henk

January 29, 2020
6:55 am
Sarfaraz
Guest
Guests
Go to Top
3sp_Permalink sp_Print sp_QuotePost Quote

Hello Henk,

We have followed the steps and created the self-signed certificate. Below is the setting which we have applied.

SSLCertificate C:\Certificate
ew\IP.pfx
SSLPassword XXXXXXX
SSLProtocol TLS12

In the Event log we see this error

A call to SSPI failed, see inner exception.

Customer is getting the below error. Please let us know are we doing something wrong.

[route=100529/64509,esme=138.201.XX.XX:8XXX,tls=1] Unable to connect: x509: cannot validate certificate for 138.201.XX.XXX because it doesn’t contain any IP SANs

Thanks
Sarfaraz

January 28, 2020
11:09 am
Henk Helmantel
Admin
Forum Posts: 1488
Member Since:
May 28, 2013
sp_UserOfflineSmall Offline
sp_UserWebsite
Go to Top
2sp_EditHistory sp_Permalink sp_Print sp_QuotePost Quote

Hello Sarfaraz,

To set up an SMPP server that supports SSL connections, you need an SSL certificate and add it to the SMPP Connector.

You can find the installation instructions for an SMPP Connector that accepts SSL connections in the online manual.

Regards, Henk

January 28, 2020
10:35 am
Sarfaraz
Guest
Guests
Go to Top
1sp_Permalink sp_Print sp_QuotePost Quote

Hello Henk,

One of our customer requires a TLS 1.2 port to connect to us using the secure connection. In the SMPP Connector we can see SSL protocol TLS12 is enable but still the client is not able to connect so do we need to do any more setting.

Please let us know how we can achieve this.

Regards,
Sarfaraz

sp_NewPost Add Reply sp_NewTopic Add Topic
Go to top
Forum Timezone: Europe/Amsterdam

Most Users Ever Online: 529

Currently Online:
2 Guest(s)

Currently Browsing this Page:
1 Guest(s)

Top Posters:

Member Stats:

Guest Posters: 672

Members: 0

Moderators: 0

Admins: 1

Forum Stats:

Groups: 2

Forums: 3

Topics: 1141

Posts: 3899

Newest Members:

, Henk Helmantel

Administrators: Henk Helmantel: 1488