Results 1 to 3 of 3

Thread: [SOLVED] ssl certs - not working for webmail or mta

  1. #1
    SpaceBass is offline Active Member
    Join Date
    Jan 2007
    Posts
    30
    Rep Power
    8

    Default [SOLVED] ssl certs - not working for webmail or mta

    Hey Folks,
    Since I started using Zimbra close to two years ago, I have had a challenge getting commercial certs to work. Since this is a small server that only supports about 10 users (open source edition) I never spent too much time on the errors and stuck to the self signed certs.

    Recently I decided it was time to get legit about it and make the commercial certs work. I have some motivation in that I want to sync with google calendars, I want to use the java mobile app, etc ...

    I started by generating a CSR using the admin gui. I submitted that CSR to GoDaddy and they sent back a zip with 4 files. I used the GUI to upload mail.mydomain.com.crt and it said it installed successfully. However thats where the success ended.

    Apple's Maill.app complained that the cert was untrusted (as did the iPhone) and firefox still showed the webmail using the self signed cert. I did some diffing and found a thread that discussed the order to upload the files. Some have suggested that I should see multiple fields to upload multiple files - thats not the case with my install:


    I then tried to follow these instructions:
    Commercial Certificates - Zimbra :: Wiki

    I did all the keytool commands under the godaddy section, thinking it maybe the root CA and intermediate certs were missing - they executed fine, but after a reboot nothing has changed.

    what am I missing? I'd added certs to all kinds of servers before and never had this kind of confusion or frustration. Every doc suggests a different way to do things.

    Thanks in advance!
    -N

    edited to add: I know the wiki I linked to above is not for 5.x but I wanted to try it.
    I've tried to follow Commercial Certificate in 5.x - Zimbra :: Wiki
    which suggests the need to concatenate the files... it sounds easy, but there is a lot of room for error there.
    Is it simply a matter of doing a: cat rootca.crt >> commercial.crt ; cat intermediate.crt >> commercial.crt .....
    or do I need to remove the ____begin certificate__ lines?
    Last edited by SpaceBass; 06-30-2008 at 07:42 AM.

  2. #2
    mmorse's Avatar
    mmorse is offline Moderator
    Join Date
    May 2006
    Location
    USA
    Posts
    6,242
    Rep Power
    21

    Default

    Besides Safari not being supported for the admin console, via another thread he tried FF as well and it was found that the fields still didn't match - turned out to be an old version:
    Quote Originally Posted by SpaceBass View Post
    DWMTractor
    I had a similar thought, I was on the first GA release of 5.x - I've upgraded to 5.0.7 and now I have the fields that your picture shows.

    Thanks!

  3. #3
    SpaceBass is offline Active Member
    Join Date
    Jan 2007
    Posts
    30
    Rep Power
    8

    Default solved

    Quote Originally Posted by mmorse View Post
    Besides Safari not being supported for the admin console, via another thread he tried FF as well and it was found that the fields still didn't match - turned out to be an old version:
    MMorse - thanks for following up.
    I guess my memory failed me - I was sure I was on the current release, but I was actually on an early GA of 5.x ... upgrading solved the issue.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Daily mail report always reports "No messages found"
    By McPringle in forum Installation
    Replies: 42
    Last Post: 06-13-2011, 08:57 AM
  2. [SOLVED] Commercial SSL certs not working
    By veronica in forum Installation
    Replies: 6
    Last Post: 06-30-2008, 05:33 AM
  3. Replies: 0
    Last Post: 10-30-2007, 03:15 PM
  4. SSL certificate problem(?) Tomcat not working
    By akai in forum Installation
    Replies: 1
    Last Post: 07-02-2007, 02:43 PM
  5. Server Stats Cont...
    By DMRDave in forum Administrators
    Replies: 15
    Last Post: 02-16-2006, 01:16 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •