Skip to content

How to Enable SSL for Ant Media Server ?

burak-58 edited this page Jan 7, 2020 · 6 revisions

NOTE: We have updated our documentation. This page is outdated. You can access updated version from the sidebar menu.


HTTPS and WSS(WebSocket Secure) is mandatory for Google Chrome to run WebRTC and WebSocket applications. In addition, developers want to serve their content with secure connection as well. The script in this document install Let's Encrypt SSL certificate

Enabling SSL in Linux(Ubuntu)

Go to the folder where Ant-Media-Server is installed. Default directory is /usr/local/antmedia

cd /usr/local/antmedia

If there is a service that uses 80 port, you need to disable it. If your system has Apache Web Server, you need to disable it first such a command below

sudo service apache2 stop

There should be a enable_ssl.sh file in the installation directory. Call the enable_ssl.sh with your domain name

sudo ./enable_ssl.sh -d example.com

v1.5+, enable_ssl.sh script supports external fullchain.pem and privkey.pem files. It's usage has been changed to

Usage:
sudo ./enable_ssl.sh -d {DOMAIN_NAME}
sudo ./enable_ssl.sh -f {FULL_CHAIN_FILE} -p {PRIVATE_KEY_FILE} -d {DOMAIN_NAME} 

If you disable any service that binds to 80 port such as Apache Web Server, enable it again

sudo service apache2 start

Make sure that your domain points to your server public IP address in the DNS records

If the above scripts returns successfully, SSL will be installed your server, you can use https through 5443. Like below

https://example.com:5443

ATTENTION: If port 80 is used by some other process or it's forwarded to some other port, enable_ssl.sh will not be successful. Please disable the process or delete the port forwarding temporarily in running the enable_ssl.sh script above

If you are still having issues, please let us know that. contact@antmedia.io

References

Clone this wiki locally
You can’t perform that action at this time.