Installation de Jitsi.

I/ Serveur Gandi IaaS : hacklab.

Distribution : Debian 9
CPU : 4
RAM : 4 Go
Nom du disque système : sysdiskhl02
Taille : 15 Go
Nom (Hostname) : serverhl02
Identifiant administrateur : admin

II/ Configuration.

1/ Connexion sur le serveur.

util01@station02:~$ ssh admin@217.70.189.227
admin@217.70.189.227's password:
Linux serverhl02 4.9.0-4-amd64 #1 SMP Debian 4.9.51-1 (2017-09-28) x86_64
...
admin@serverhl02:~$

2/ Passage sous l’utilisateur d’administration.

admin@serverhl02:~$ su
Password:
root@serverhl02:/home/admin#

3/ Mise-à-jour du système.

root@serverhl02:/home/admin# apt-get update && apt-get upgrade

4/ Installation des paquets de base.

root@serverhl02:/home/admin# apt-get install mc vim htop screen

5/ Installation des locales.

Ouvrir :

/etc/locale.gen

Chercher et décommenter :

# fr_FR ISO-8859-1
# fr_FR.UTF-8 UTF-8

Actions :

root@serverhl02:/home/admin# locale-gen
root@serverhl02:/home/admin# export LANGUAGE=fr_FR.UTF-8
root@serverhl02:/home/admin# export LANG=fr_FR.UTF-8
root@serverhl02:/home/admin# export LC_ALL=fr_FR.UTF-8

5/ Installation de Nginx.

root@serverhl02:/home/admin# apt-get install nginx

6/ Configuration des dépôts pour Let’s Encrypt.

Ouvrir :

/etc/apt/sources.list.d/debian-stretch.list

Ajouter à la fin :

deb [arch=amd64] http://deb.debian.org/debian stretch-backports main contrib non-free
deb-src [arch=amd64] http://deb.debian.org/debian stretch-backports main contrib non-free

Action :

root@jitsi:/# apt update

7/ Installation du générateur de certificat Let’s Encrypt.

root@serverhl02:/home/admin# apt install certbot python-certbot-nginx -t stretch-backports

8/ Génération d’un certificat SSL.

root@serverhl02:/home/admin# certbot
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx
Enter email address (used for urgent renewal and security notices) (Enter 'c' to
cancel): lesanglierdesardennes@gmail.com
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Please read the Terms of Service at
https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf. You must
agree in order to register with the ACME server at
https://acme-v02.api.letsencrypt.org/directory
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(A)gree/(C)ancel: A
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Would you be willing to share your email address with the Electronic Frontier
Foundation, a founding partner of the Let's Encrypt project and the non-profit
organization that develops Certbot? We'd like to send you email about our work
encrypting the web, EFF news, campaigns, and ways to support digital freedom.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o: N
No names were found in your configuration files. Please enter in your domain
name(s) (comma and/or space separated)  (Enter 'c' to cancel): jitsi.hacklab.fr
...
Please choose whether or not to redirect HTTP traffic to HTTPS, removing HTTP access.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: No redirect - Make no further changes to the webserver configuration.
2: Redirect - Make all requests redirect to secure HTTPS access. Choose this for
new sites, or if you're confident your site works on HTTPS. You can undo this
change by editing your web server's configuration.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate number [1-2] then [enter] (press 'c' to cancel): 2
...
Congratulations! You have successfully enabled https://jitsi.hacklab.fr
...
root@serverhl02:/home/admin#

9/ Test.

https://jitsi.hacklab.fr/

10/ Installation de Java

root@serverhl02:/home/admin# apt-get install openjdk-8-jre-headless ca-certificates-java

11/ Configuration des dépôts Jitsi.

root@serverhl02:/home/admin# echo 'deb https://download.jitsi.org stable/' >> /etc/apt/sources.list.d/jitsi-stable.list

root@serverhl02:/home/admin# wget -qO - https://download.jitsi.org/jitsi-key.gpg.key | apt-key add -

root@serverhl02:/home/admin# apt-get update

12/ Installation de Jitsi

root@serverhl02:/home/admin# apt-get install jitsi-meet

13/ Configuration de Jitsi

- Configuring jitsi-videobridge
Hostname : jitsi.hacklab.fr

- Configuring jitsi-meet-web-config
SSL certificate for the Jitsi Meet instance : Generate a new self-signed certificate (You will later get a chance to obtain a Let's Encrypt certificate)

- < OK>

14/ Post-configuration de Jitsi

root@serverhl02:/home/admin# rm /etc/nginx/sites-enabled/default.conf

root@serverhl02:/home/admin# service nginx restart

15/ Test.

https://jitsi.hacklab.fr/

16/ Lien.