We might have something of a solution. We had problems with "zmprov help config" complaining of an untrusted server which was solved by importing the CA certificate manually
keytool -import -alias (hostname)_root -keystore /opt/zimbra/java/jre/lib/security/cacerts -storepass changeit
-trustcacerts -file CERT_FILE
This resulted in "zmprov help config" complaining about a failed authentication (ERROR: account.AUTH_FAILED (authentication failed for zimbra)) which was solved by resetting the LDAP password by zmldappasswd.
Between these steps we restarted the tomcat to make sure the changes were acted upon. This far our server hasn't gone down, so hopefully it took care of it. |