Zyxel CloudCNM SecuManager doesn’t offer a way to add a custom CA or CRL. Therefore, if your Ejabberd server is running on a non-standard port (e.g. 5883 instead of 1883), it may fail to start. An easy workaround is to use a different hostname for your Ejabberd server. We’ve seen cases where this issue happens due to misconfigured firewalls.
Zyxel CloudCNM SecuManager requires that your XMPP server has a valid certificate signed by a trusted root CA. Unfortunately, Ejabberd is not an officially supported XMPP server. Therefore, it is not possible to adhere to this requirement. Unfortunately, there is nothing that can be done about it.
Zyxel CloudCNM SecuManager - FAQ
Q: Is there a way to add a custom CA or CRL?
A: No, there is not.
Zyxel CloudCNM SecuManager: A hands-on review
Zyxel CloudCNM SecuManager was built for secure online communication, and it does this quite well. This is a software that we could see being useful for businesses in different industries. The main issue with Zyxel CloudCNM SecuManager is that it requires an XMPP server to be configured with a valid certificate signed by a trusted root CA in order to function properly. Ejabberd is not on the list of officially supported XMPP servers, so it is not possible to adhere to this requirement. There are some workarounds available, but they are not ideal solutions. In our opinion, the most viable option would be to use a different hostname for your Ejabberd server if you’re using it on a non-standard port (e.g. 5883 instead of 1883).
Timeline
Published on: 09/29/2022 03:15:00 UTC
Last modified on: 09/29/2022 17:15:00 UTC