Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Note:The CloudfonCX v3.x is an ALL NEW major release, which means it can't be upgraded from the CloudfonCX v2.x installation automatically. Version v3.1.0 must be installed on a new server which no v2.x installed. If the server already has v2.0 installed, please follow the steps below to remove it

...

Table of Contents

...

Prerequisite Knowledge for Linux

...

When there is a need for additional security of the conversation traffic for Web (HTTPS) sessions, the Transport Layer Security (TLS) is used to secure the client's conversation connections. In TLS protocol, the data is encrypted and protected. TLS communication requires a certificate to authenticate the recipient of the secured data.

...

  1. Purchase a Domain (for example, cloudfon.net) from the domain provider (for example, GoDaddy.) for your CX. 

  2. Add an A record in the Domain DNS zone, and resolve the Domain to your CX IP, for example: point the cx.cloudfon.net to CX server IP.

  3. Purchase a certificate from the trust certificate provider for your domain, for example, Digicert, Thawte, GeoTrust; If you want to make it easier to manage multi-tenants, you'd better apply for a wildcard certificate.

  4. Generate the CSR file and private key file according to the certificate provider’s guide, and keep the files. usuallyUsually, you will have two files: the certificate and the private key. Note, please choose the certificates for Nginx.

  5. Rename the private key file as yourname_cx.key. 

  6. Submit the CRS file to the certificate provider, and download the certificate files after your certificates were approved. This step will end up with two files: Intermediate CA certificate and SSL certificate . Note, some providers don't have the Intermediate CA certificate.

  7. Please ignore this step if your provider doesn't provide the Intermediate CA certificate. Use a plain text editor for example Windows Notepad (do not use MS Word) to open the Intermediate CA file and SSL certificate file, copy the Intermediate CA contents to append to the SSL certificate file, and rename the SSL certificate file as yourname_cx.pem. In the Linux environment, you can use the below commands to combine the certificate files. 

...

Please Note: Please confirm the Certificate is a full-Chain certificate, otherwise some third-party platforms such as Whatsapp will reject the verification request. After the server is initialized, you can test the certificate integrity through the following test sites:

For example: https://www.sslchecker.com/sslchecker