Authentication problem

I Set Secure Domain as Handbook.IT worked.
When I reboot system.the Authentication can not sucess.

prosody log:
errors:
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for *: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for https port 5281: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 portmanager error Error binding encrypted port for https: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for https port 5281: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 portmanager error Error binding encrypted port for https: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on lobby.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on lobby.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on internal.auth.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on internal.auth.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for localhost: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 localhost:tls error Unable to initialize TLS: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for localhost: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 localhost:tls error Unable to initialize TLS: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on conference.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on conference.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 modulemanager error Unable to load module ‘muc_mam’: /usr/lib/prosody/modules/mod_muc_mam.lua: No such file or directory

Nov 13 10:43:16 conference.meet.igocctv.com:muc_domain_mapper warn Session filters applied
Nov 13 10:43:16 c2s29ef270 info Client connected
Nov 13 10:43:16 c2s29ef270 info Client disconnected: ssl handshake failed
Nov 13 10:43:20 mod_posix warn Received SIGTERM
Nov 13 10:43:20 general info Shutting down: Received SIGTERM
Nov 13 10:43:20 c2s29de920 info c2s stream for jibri@auth.meet.igocctv.com/15bb7dcd-9612-4fe9-b340-dca3fbdffbf9 closed: Received SIGTERM
Nov 13 10:43:20 c2s29de920 info Client disconnected: connection closed
Nov 13 10:43:20 general info Shutting down…
Nov 13 10:43:20 general info Shutdown status: Cleaning up
Nov 13 10:43:20 general info Shutdown complete
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for : invalid protocol (tlsv1_2+)
Nov 13 10:43:20 general info Hello and welcome to Prosody version 0.9.10
Nov 13 10:43:20 general info Prosody is using the select backend for connection handling
Nov 13 10:43:20 portmanager info Activated service ‘http’ on [::]:5280, [
]:5280
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for https port 5281: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 portmanager error Error binding encrypted port for https: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for https port 5281: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 portmanager error Error binding encrypted port for https: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 portmanager info Activated service ‘https’ on no ports
Nov 13 10:43:20 portmanager info Activated service ‘c2s’ on [::]:5222, []:5222
Nov 13 10:43:20 portmanager info Activated service ‘legacy_ssl’ on no ports
Nov 13 10:43:20 portmanager info Activated service ‘s2s’ on [::]:5269, [
]:5269
Nov 13 10:43:20 mod_posix info Prosody is about to detach from the console, disabling further console output
Nov 13 10:43:20 mod_posix info Successfully daemonized to PID 6303
Nov 13 10:43:20 meet.igocctv.com:muc_lobby_rooms warn Lobby rooms will not work with Prosody version 0.10 or less.
Nov 13 10:43:20 portmanager info Activated service ‘component’ on [127.0.0.1]:5347, [::1]:5347
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on lobby.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager warn Falling back to null driver for persistent storage on lobby.meet.igocctv.com
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
ov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on internal.auth.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager warn Falling back to null driver for persistent storage on internal.auth.meet.igocctv.com
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on internal.auth.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager warn Falling back to null driver for config storage on internal.auth.meet.igocctv.com
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for localhost: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 localhost:tls error Unable to initialize TLS: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 certmanager error SSL/TLS: Error initialising for localhost: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 localhost:tls error Unable to initialize TLS: invalid protocol (tlsv1_2+)
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on conference.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager warn Falling back to null driver for persistent storage on conference.meet.igocctv.com
Nov 13 10:43:20 modulemanager error Unable to load module ‘storage_memory’: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager error Failed to load storage driver plugin memory on conference.meet.igocctv.com: /usr/lib/prosody/modules/mod_storage_memory.lua: No such file or directory
Nov 13 10:43:20 storagemanager warn Falling back to null driver for config storage on conference.meet.igocctv.com
Nov 13 10:43:20 modulemanager error Unable to load module ‘muc_mam’: /usr/lib/prosody/modules/mod_muc_mam.lua: No such file or directory
Nov 13 10:43:20 conference.meet.igocctv.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host meet.igocctv.com!
Nov 13 10:43:20 conference.meet.igocctv.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host recorder.meet.igocctv.com!
Nov 13 10:43:20 conference.meet.igocctv.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host callcontrol.meet.igocctv.com!
Nov 13 10:43:20 conference.meet.igocctv.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host lobby.meet.igocctv.com!
Nov 13 10:43:20 conference.meet.igocctv.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host focus.meet.igocctv.com!

jicofo.log:

Jicofo 2020-11-13 10:49:14.001 WARNING: [318] org.jivesoftware.smack.AbstractXMPPConnection.callConnectionClosedOnErrorListener() Connection XMPPTCPConnection[not-authenticated] (0) closed with error
javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.ssl.Alert.createSSLException(Alert.java:131)
at sun.security.ssl.TransportContext.fatal(TransportContext.java:324)
at sun.security.ssl.TransportContext.fatal(TransportContext.java:267)
at sun.security.ssl.TransportContext.fatal(TransportContext.java:262)
at sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:654)
at sun.security.ssl.CertificateMessage$T12CertificateConsumer.onCertificate(CertificateMessage.java:473)
at sun.security.ssl.CertificateMessage$T12CertificateConsumer.consume(CertificateMessage.java:369)
at sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:377)
at sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:444)
at sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:422)
at sun.security.ssl.TransportContext.dispatch(TransportContext.java:182)
at sun.security.ssl.SSLTransport.decode(SSLTransport.java:149)
at sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1143)
at sun.security.ssl.SSLSocketImpl.readHandshakeRecord(SSLSocketImpl.java:1054)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:394)
at org.jivesoftware.smack.tcp.XMPPTCPConnection.proceedTLSReceived(XMPPTCPConnection.java:810)
at org.jivesoftware.smack.tcp.XMPPTCPConnection.access$1200(XMPPTCPConnection.java:151)
at org.jivesoftware.smack.tcp.XMPPTCPConnection$PacketReader.parsePackets(XMPPTCPConnection.java:1071)
at org.jivesoftware.smack.tcp.XMPPTCPConnection$PacketReader.access$300(XMPPTCPConnection.java:1000)
at org.jivesoftware.smack.tcp.XMPPTCPConnection$PacketReader$1.run(XMPPTCPConnection.java:1016)
at java.lang.Thread.run(Thread.java:748)

Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.provider.certpath.SunCertPathBuilder.build(SunCertPathBuilder.java:141)
at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:126)
at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:280)
at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:451)

JVB.log
2020-11-13 11:26:12.171 WARNING: [1115] org.jivesoftware.smack.AbstractXMPPConnection.callConnectionClosedOnErrorListener: Connection XMPPTCPConnection[not-authenticated] (0) closed with error
javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.ssl.Alert.createSSLException(Alert.java:131)
at sun.security.ssl.TransportContext.fatal(TransportContext.java:324)
at sun.security.ssl.TransportContext.fatal(TransportContext.java:267)
at sun.security.ssl.TransportContext.fatal(TransportContext.java:262)
at sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:654)
at sun.security.ssl.CertificateMessage$T12CertificateConsumer.onCertificate(CertificateMessage.java:473)
at sun.security.ssl.CertificateMessage$T12CertificateConsumer.consume(CertificateMessage.java:369)
at sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:377)
at sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:444)
at sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:422)
at sun.security.ssl.TransportContext.dispatch(TransportContext.java:182)
at sun.security.ssl.SSLTransport.decode(SSLTransport.java:149)
at sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1143)
at sun.security.ssl.SSLSocketImpl.readHandshakeRecord(SSLSocketImpl.java:1054)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:394)
at org.jivesoftware.smack.tcp.XMPPTCPConnection.proceedTLSReceived(XMPPTCPConnection.java:810)
at org.jivesoftware.smack.tcp.XMPPTCPConnection.access$1200(XMPPTCPConnection.java:151)
at org.jivesoftware.smack.tcp.XMPPTCPConnection$PacketReader.parsePackets(XMPPTCPConnection.java:1071)
at org.jivesoftware.smack.tcp.XMPPTCPConnection$PacketReader.access$300(XMPPTCPConnection.java:1000)
at org.jivesoftware.smack.tcp.XMPPTCPConnection$PacketReader$1.run(XMPPTCPConnection.java:1016)
at java.lang.Thread.run(Thread.java:748)

Any suggestion? thanks

Are you using your own certificate or a Letsencrypt cert?

Thank Freddie
I use Letsencrypt cert.
/usr/share/jitsi-meet/scripts/install-letsencrypt-cert.sh

Before setting up secure domain, did your Jitsi work with 3 or more people?

Soory I only test one people,the other use jigasi sip phone can heared echo other.

Just one person in a Jitsi conference does not test that it’s actually working. You have to test with 3 simultaneous audio and video connections, at least to confirm it works fine. Perhaps you should try ascertaining that first, because your problem may not be with implementing secure domain.

Thank Freddie very much.
I install jitsi meet again. no isntall secure domain and jibri.
Jitsi work with 2 more people no problem.but third people can not join the meet.the user’s

browser show error. How can i do it?

In this order:

  1. Check your firewall rules; make sure the ports are not being blocked
  2. Check to make sure port 10000/UDP is open and forwarded appropriately
  3. Check the Advanced configuration section of the Quick Install Guide for additional configurations you may need to do.

Thank Freddie
Change the client browser,It worked 3 people online fine?

Yes, if you’re able to get 3 people in a meeting, that’s good. Make sure they’re all in the same meeting though. Once you confirm there are no issues, then you can try setting up Secure domain again.