The following article is a great landing page to start with into getting to understand how Vidyo handles certificates as well as how to deploy them:
If one is missing the root and/or intermediate(s) certificates, the following article will explain how to obtain them from the domain certificate provided by the CA:
To ensure the proper certificates are being uploaded to the appropriate locations, we will review the following certificates that will or may be provided by the CA:
- Domain certificate
- Will be uploaded to the Server Certificates section under Settings->Security on the /super page.
- Intermediate certificate
- Would be combined with the root certificate and then uploaded uploaded to the Server CA Certificates section under Settings->Security on the /super page.
- Root certificate
- May be needed if root certificate is not in the certificate store. Would be combined with the intermediate certificate and then uploaded to the Server CA Certificates section under Settings->Security on the /super page.
There may be multiple intermediate certificates, so this will need to be rearranged according to the chain list.
Assuming they are of .crt or .cer types, one can combine the intermediate and root certificates by using Notepad++ (Notepad can be used, however, we have seen spacing issues caused by Notepad and recommend Notepad++ to avoid this). Important to note that Linux reads certificates from bottom up, whereas Windows will display them from top to bottom. To clarify why this is important, our VidyoPortal runs on a Linux OS and will need to ensure the certificate is listed from bottom up.
The following example will be using a GoDaddy root and intermediate certificates and will show how to combine them via Notepad++.
To combine them, simply copy the contents inside of the root certificate and paste it into a new line at the bottom of the intermediate certificate file. Once this is done, click File -> Save As and save this new bundle file and ensure to add ‘.crt’ without the quotes at the end of the new filename.
Results of the new file will look exactly like the intermediate certificate when opened regularly, however, when viewing in Notepad++, we can see that the bundle as this contains both root and intermediate in one file.
Once this is saved, one will be able to use this and upload to the Server CA Certificate tab section under Settings-> Security in the /super page of the VidyoPortal. This same bundle can be used to upload to VidyoRoom systems that will need this in order to login or join into a conference.