Signed SSL/TLS certificate for WebRTC¶
XivoCC installation generates self-signed SSL/TLS into nginx server running as part of XivoCC. This limits WebRtc usage:
- UC Assistant shows warning about unsecure page and exception must be confirmed by user.
- Desktop Applications must be started with
--ignore-certificate-errorsparameter, which degrades security.
To avoid this, SSL/TLS certificate signed by authority recognized by Chrome in PEM format is required, see Install trusted certificate for nginx.
Do NOT forget to check that XUC_HOST in /etc/docker/compose/custom.env is also configured with the same FQDN as in the certificate, not the IP address.