There is an open issue on github about letsencrypt certificates renewal problems ( ). Now you have a jitsi-meet server up and running at (without any authentication: anyone can enter, create rooms and invite people). When requested, enter your email (to receive certificate renewal notifications – IMPORTANT: put an email address that you actually use, such notifications are important!) and wait for the process to be successfully completed (in case of failure, relaunch the script above). Run auto-install script: sudo /usr/share/jitsi-meet/scripts/install-letsencrypt-cert.sh When requested, enter your as FQDN and choose to generate a self signed certificate. Sudo sh -c "echo 'deb stable/' > /etc/apt//jitsi-stable.list" If you want to stick to OpenJDK 8, do it before installing jitsi-meet: sudo apt install -y openjdk-8-jre-headlessĪdd Jitsi repository and install jitsi-meet (remember to check OpenJDK version - do not add -y to apt command): wget -qO - | sudo apt-key add. You should check which Java version is automatically installed along with jitsi-meet while installing it. Jitsi is reported not to work with OpenJDK 10: many recommend using OpenJDK 8, but OpenJDK 11 appears to be OK. (this is actually needed only on Ubuntu, but since someone reported having issues also with Debian, you have better to do it anyway) sudo apt install -y nginx You should install nginx before jitsi-meet, so that you won’t need to manually configure the webserver: IMPORTANT Remember to create a DNS A record for. Then check hostname, it should look like this: hostname -f Set hostname and FQDN values (change meet and to the actual domain you are using): sudo hostnamectl set-hostname meet → set and enable firewall (UFW): sudo apt install -y ufw Later on you will configure Fail2Ban to work with Prosody (see “Fail2Ban for Prosody” in authentication how-to). → install fail2ban: sudo apt install -y fail2ban Update your system (mantain local config files if asked) and reboot: sudo apt update → disable SSH Password login and SSH root login: sudo nano /etc/ssh/sshd_configĬhanging PasswordAuthentication and PermitRootLogin values to no (uncomment if necessary), save and exit, then restart sshd to apply changes (your ssh connection will not be interrupted): sudo service sshd restart Save and exit (alternatively, you may use ssh-copy-id on your client machine). Login as the newly created user and add your public SSH key(s): mkdir ~/.ssh Usermod -a -G sudo USER_NAME_OF_YOUR_CHOICE → first of all, create a new user, add it to sudoers group and logout as root: apt install -y sudo It is just an internal domain used by jicofo to connect to prosody. NOTE: you do not need to create a DNS record for.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |