I Could not get into Zimbra from browser, zmcontrol showed everything down was receiving many errors one of which was: zimbra TLS: error:02001002:system library:fopen:No such file or directory bss_file.c:352
1. I removed ssl folder and recreated etc by doing the following:
(Base on
Recreating a Self-Signed SSL Certificate - Zimbra :: Wiki)
As Root:
rm -rf /opt/zimbra/ssl
mkdir /opt/zimbra/ssl
chown zimbra:zimbra /opt/zimbra/ssl
chown zimbra:zimbra /opt/zimbra/java/jre/lib/security/cacerts
chmod 644 /opt/zimbra/java/jre/lib/security/cacerts
As zimbra:
keytool -delete -alias my_ca -keystore /opt/zimbra/java/jre/lib/security/cacerts -storepass changeit
keytool -delete -alias jetty -keystore /opt/zimbra/mailboxd/etc/keystore -storepass zimbra
zmlocalconfig -s -m nokey mailboxd_keystore_password
As root:
/opt/zimbra/bin/zmcertmgr createca -new
/opt/zimbra/bin/zmcertmgr deployca -localonly
/opt/zimbra/bin/zmcertmgr createcrt self -new
/opt/zimbra/bin/zmcertmgr deploycrt self
As zimbra
zmcontrol start
2. THen I followed the following steps:
--Clear all the contents of the /opt/zimbra/conf/ca directory by backing them up somewhere
--Copy the /opt/zimbra/ssl/zimbra/ca/ca.key /opt/zimbra/conf/ca/ca.key
--Copy /opt/zimbra/ssl/zimbra/ca/ca.pem /opt/zimbra/conf/ca/ca.pem
--Create the hash value by doing the following
--ln -f -s ca.pem /opt/zimbra/conf/ca/`openssl x509 -hash -noout -in
--/opt/zimbra/conf/ca/ca.pem`.0
--chmod 644 /opt/zimbra/conf/ca/*
--Restart the zmcontrol
3. I restarted zimbra (su zimbra then zmcontrol restart) and everyting came up ok.