I need to add some users of my openfire server to my gtalk roster. So I thought to use "Server to Server" feature.
The steps I followed were:
- add this dns record to zone file of domain:
_jabber._tcp IN SRV 5 0 5269 xmpp-server.l.google.com.
_jabber._tcp IN SRV 20 0 5269 xmpp-server1.l.google.com.
_jabber._tcp IN SRV 20 0 5269 xmpp-server2.l.google.com.
_jabber._tcp IN SRV 20 0 5269 xmpp-server3.l.google.com.
_jabber._tcp IN SRV 20 0 5269 xmpp-server4.l.google.com.
_xmpp-server._tcp IN SRV 5 0 5269 xmpp-server.l.google.com.
_xmpp-server._tcp IN SRV 20 0 5269 xmpp-server4.l.google.com.
_xmpp-server._tcp IN SRV 20 0 5269 xmpp-server1.l.google.com.
_xmpp-server._tcp IN SRV 20 0 5269 xmpp-server3.l.google.com.
_xmpp-server._tcp IN SRV 20 0 5269 xmpp-server2.l.google.com.
- buy a godaddy certificate and add it in openfire (only RSA). In status column I read “CA Signed”;
- checked that server name, hostname and xmpp.domain are equal;
- checked that in “server to server” menu, the service was enabled on port 5269, never close idle connections, allowed to connect: anyone, Not Allowed to Connect: empty;
- checked that port 5269 is open in the firewall and accepts external connection;
- add an openfire user’s account on pidgin.
But nevertheless I am unable to add an user of my openfire server in my gtalk roster.
Why? I have only 2 doubts:
- before, my domain was configured in google apps. But now I removed from it to avoid confusion between openfire and google server;
- I installed only the RSA certificate. Maybe google wants also the DSA certificate?