Archive for August, 2017

0227 | ตั้งค่า CAT SIP Connect บน Elastix

Tuesday, August 15th, 2017 Posted in Misc | No Comments »

  • เข้าเมนู PBX Configuration > Trunks > Add Trunk > SIP Trunk
  • Outbound CallerID กรอกเบอร์ที่ได้มา

    • Peer details ใส่
type=peer
nat=no
dtmfmode=rfc2833
host=catnextgen.com
realm=catnextgen.com
username=+662*******
secret=%%%%%%%
fromuser=+662*******
qualify=no
canreinvite=no
transport=udp
port=5165
call-limit=5
fromdomain=catnextgen.com
  • Incoming settings ใส่
type=peer
nat=no
dtmfmode=rfc2833
username=+662*******
secret=%%%%%%%
insecure=port,invite
port=5165
host=202.129.61.118
qualify=yes
canreinvite=yes
transport=udp
  • Register string ใส่
+662*******@catnextgen.com:%%%%%%%:662*******@catnextgen.com@202.129.61.118:5165/+662*******

Tags: , , ,

0226 | MS Exchange : CryptographicException: Invalid provider type specified

Wednesday, August 2nd, 2017 Posted in Windows Server | 1 Comment »

There’s issue when installing/renewing a certificate to MS Exchange.

System.Security.Cryptography.CryptographicException: Invalid provider type specified

This is the explaination (reference: MS Technet > exchange server 2013 > Unable to access ECP/OWA)

The basic problem is that the Exchange code cannot properly handle X.509 certificates signed with the new and mighty Microsoft Software Key Storage Provider (which is kind of funny)

To fix this, do the following step:

  1. Export the certificate as ‘pfx’ file then remove it from the certificate store.
  2. Open ‘Exchange Management Shell’
  3. Type command certutil -csp "Microsoft RSA SChannel Cryptographic Provider" -importpfx c:\path\to\certificate.pfx note to change ‘c:\path\to\certificate.pfx’ to the path of your certificate exported from step 1.
  4. Type certutil -store my, (see sample output below) Check if the ‘Provider = ‘ line is ‘Microsoft RSA SChannel Cryptographic Provider’. Copy the hash after ‘Cert Hash(sha1):’
  5. Enable the certificate for Exchange. Type Enable-ExchangeCertificate -thumbprint "00 11 22 33 44 55 66 77 88 99 aa bb cc dd ee ff 01 23 45 67" -Services "iis,pop,imap,smtp"
  6. Restart IIS.
Serial Number: ************
Issuer: CN=WMSvc-***
 NotBefore: 12/24/2014 7:18 PM
 NotAfter: 12/21/2024 7:18 PM
Subject: CN=WMSvc-***
Signature matches Public Key
Root Certificate: Subject matches Issuer
Cert Hash(sha1): 00 11 22 33 44 55 66 77 88 99 aa bb cc dd ee ff 01 23 45 67
  Key Container = WMSvc Certificate Key Container
  Unique container name: *******************************************
  Provider = Microsoft RSA SChannel Cryptographic Provider
Encryption test passed

Tags: