JonArzelusKevo
commented
2 years ago We are managing this in IBM support, I suggest if anyone faces the same issue to do so as it is not related with the mentioned above (in our case the private cert was missing)
Hi, this error is related to the VG SIP Orchestrator service, that prevents us for having TLS and SRTP correctly configured I think because the crypto suite that Twilio (our SIP provider) uses is disabled in Java configuration. Checking the container and here https://www.ibm.com/docs/en/sdk-java-technology/8?topic=customization-disabled-restricted-cryptographic-algorithms it says that there are some algorithms disabled in the
jdk.certpath.disabledAlgorithmsargument, and Twilio as for https://www.twilio.com/docs/voice/api/secure-media the only algorithm that accepts for both media and signaling isAES_CM_128_HMAC_SHA1_80, which I think is disabled bySHA1 jdkCA & usage TLSServer. First of all, I may be totally wrong but could this be enabled so we can use SRTP and TLS with VG and Twilio? Thanks!