Enable SSL with Just 1 Command – Easy and Fast

Published by mekya on

This blog post will help you to enable SSL for Ant Media Server. Enabling SSL is not mandatory for all cases. However,  it’s mandatory when requesting access to mic and camera. It’s not mandatory for playing streams HTTPS and WSS (WebSocket Secure) is mandatory for Google Chrome to run WebRTC and WebSocket applications.

In addition, developers want to serve their content with a secure connection as well. The script in this post install Let’s Encrypt SSL certificate.

Enable SSL - Lets encrypt ssl ant media server

Enable SSL in Linux(Ubuntu)

Go to the folder where Ant-Media-Server is installed. Default directory is /usr/local/antmedia

cd /usr/local/antmedia

If there is a service that uses 80 port, you need to disable it. If your system has Apache Web Server, you need to disable it first such a command below

sudo service apache2 stop

There should be an enable_ssl.sh file in the installation directory. Call the enable_ssl.sh with your domain name

sudo ./enable_ssl.sh -d example.com

enable_ssl.sh script supports external fullchain.pem, chain.pem and privkey.pem files as in the following format

sudo ./enable_ssl.sh -f {FULL_CHAIN_FILE} -p {PRIVATE_KEY_FILE} -c {CHAIN_FILE} -d {DOMAIN_NAME}

Ex:

sudo ./enable_ssl.sh -f yourdomain.crt -p yourdomain.key -c yourdomainchain.crt -d yourdomain.com
sudo ./enable_ssl.sh -f yourdomain.pem -p yourdomain.key -c yourdomainchain.pem -d yourdomain.com

If you disable any service that binds to 80 port such as Apache Web Server, enable it again

sudo service apache2 start

Make sure that your domain points to your server public IP address in the DNS records

If the above scripts return successfully, SSL will be installed your server, you can use https through 5443. Like below

https://example.com:5443

ATTENTION: If port 80 is used by some other process or it’s forwarded to some other port, enable_ssl.sh will not be successful. Please disable the process or delete the port forwarding temporarily before running the enable_ssl.sh script above

That’s all. I hope this small blog post will help you in enabling ssl. By the way, please let us know if you have a question or need help about this issue or any other one.

References

Categories: Tutorial

Related Posts

Ultimate Guide from Zero to WebRTC Hero (150K Viewers) in Auto-Scalable Real-time Streaming with Ant Media Server 1
Tutorial

Ultimate Guide from Zero to WebRTC Hero (150K Viewers) in Auto-Scalable Real-time Streaming with Ant Media Server

About WebRTC Technology WebRTC is a great technology for creating ultra-low latency interactive video applications but with most DIY technologies, scaling beyond 50,000 viewers is a challenge. Using a WebRTC service provider to exceed these Read more…

How to Setup Scalable Ultra Low Latency Streaming Cluster in Alibaba Cloud 2
Tutorial

How to Setup Scalable Ultra Low Latency Streaming Cluster in Alibaba Cloud

In this blog post, we’re going to tell how to setup a Scalable Ant Media Server Cluster in Alibaba Cloud. This solution that really cut the costs for projects that need scalable Ultra-Low latency streaming. Read more…

mcu conference
Tutorial

Unlock Amazing MCU – Merge/Mix Streams into a Single Stream in 4 Steps

One of the most asked questions is How to Merge/Mix Streams in a Single Stream in a Conference call (aka. MCU). Just assume that there are 4 people in the conference call and you want Read more…