Adobe Connect User Community
Menu

#1 2023-03-28 10:32:04

Andre Schaub

How to use SSL with 12.2 CPS

Hi folks,

does anyone know how I get SSL (443) with the 12.2 CPS server?

Best regards
André

Offline

#2 2023-03-28 12:07:35

Jorma_at_CoSo

Re: How to use SSL with 12.2 CPS

Adobe has this article that talks about using a load balancer to do the SSL work. https://helpx.adobe.com/au/adobe-connec … ebrtc.html

Offline

#3 2023-03-29 09:13:52

Andre Schaub

Re: How to use SSL with 12.2 CPS

Thx Jorma.

No it doesn't. The article talks about having a load balancer acting as a proxy between the CPS server and the signalling host.
Destination is the signalling host. 443 -> 18443, etc.

I want to provide SSL for the client connection to the CPS Server. Login, HTML View, etc.

Offline

#4 2023-03-29 10:35:35

Jorma_at_CoSo

Re: How to use SSL with 12.2 CPS

Most on-premise deployments leverage a load balancer infront of the application server(s) and that handles the SSL packaging. You could use something like Stunnel on the CPS server, but this creates a bit of resource overhead and can reduce the performance of Connect.

https://helpx.adobe.com/adobe-connect/k … unnel.html

With regard to the browser HTML view, you'd need to get the ACTS servers on SSL as well.

https://blogs.connectusers.com/connects … ws-to-wss/

Offline

#5 2023-03-29 14:55:42

Andre Schaub

Re: How to use SSL with 12.2 CPS

Yes, we use the Stunnel solution on our Connect 11.2 server.

I've tried to use an external server with nginx as a load balancer without success. The Connect app says: The plain HTTP request was sent to HTTPS port.

Load balancer
FQDN connect.example.com
nginx.conf

stream {
server {
   listen 1935;
   proxy_pass cps.example.com:1935;
}

server {
   listen 9002;
   proxy_pass cps.example.com:9002;
}
}

http {
server {
   listen 443 ssl default;
   server_name connect.example.com;
   ssl_certificate /etc/ssl/certs/example.crt;
   ssl_certificate_key /etc/ssl/certs/example.key;
   ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

   location / {
      proxy_pass http://cps.example.com:80;
      proxy_redirect off;
      proxy_set_header Host $host:$server_port;
      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
   }
}
}

CPS, AMS and ACTS
FQDN cps.example.com
In the server settings both (Adobe Connect Host and Host Mappings): connect.example.com

custom.ini
RTMP_SEQUENCE=rtmps://external-host:1935/?rtmp://localhost:8506/
ACTS_PROTOCOL=wss:433

Where is my misconception?

Offline

Board footer