Update OpenSSL configuration instructions for Linux

Update info on how to properly check where SSL certificates are located in Linux systems, and how to work around non-default locations when using the Speech SDK.

Author: pankopon

articles/cognitive-services/Speech-Service/how-to-configure-openssl-linux.md

@@ -16,17 +16,37 @@ ms.author: jhakulin
 
 When using any Speech SDK version before 1.9.0, [OpenSSL](https://www.openssl.org) is dynamically configured to the host-system version. In later versions of the Speech SDK, OpenSSL (version [1.1.1b](https://mta.openssl.org/pipermail/openssl-announce/2019-February/000147.html)) is statically linked to the core library of the Speech SDK.
 
-## Troubleshoot connectivity
+To ensure connectivity, verify that OpenSSL certificates have been installed in your system. Run a command:
+```bash
+openssl version -d
+```
+
+The output on Ubuntu/Debian based systems should be:
+```
+OPENSSLDIR: "/usr/lib/ssl"
+```
 
-If there are connection failures when using the 1.9.0 release of the Speech SDK, ensure that the `ssl/certs` directory exists in `/usr/lib` directory - which is found in the Linux file system. If the `ssl/certs` directory *doesn't exist*, check where OpenSSL is installed in your system, using the following command:
+Check whether there is `certs` subdirectory under OPENSSLDIR. In the example above, it would be `/usr/lib/ssl/certs`.
 
+* If there is `/usr/lib/ssl/certs` and it contains many individual certificate files (with `.crt` or `.pem` extension), there is no need for further actions.
+
+* If OPENSSLDIR is something else than `/usr/lib/ssl` and/or there is a single certificate bundle file instead of multiple individual files, you need to set an appropriate SSL environment variable to indicate where the certificates can be found.
+
+## Examples
+
+1. OPENSSLDIR is `/opt/ssl`. There is `certs` subdirectory with many `.crt` or `.pem` files.
+Set environment variable `SSL_CERT_DIR` to point at `/opt/ssl/certs` before running a program that uses the Speech SDK. For example:
 ```bash
-which openssl
+SSL_CERT_DIR=/opt/ssl/certs ./helloworld
 ```
 
-Then, locate the OpenSSL `certs` directory, and copy the contents of that directory into `/usr/lib/ssl/certs` directory. Next, try again to see if connectivity issues have been resolved.
+2. OPENSSLDIR is `/etc/pki/tls`. There is a certificate bundle file, for example `ca-bundle.pem` or `ca-bundle.crt`.
+Set environment variable `SSL_CERT_FILE` to point at `/etc/pki/tls/ca-bundle.pem` before running a program that uses the Speech SDK. For example:
+```bash
+SSL_CERT_FILE=/etc/pki/tls/ca-bundle.pem ./helloworld
+```
 
 ## Next steps
 
 > [!div class="nextstepaction"]
-> [About the Speech SDK](speech-sdk.md)
+> [About the Speech SDK](speech-sdk.md)