Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
Go Back   Zimbra :: Forums > Zimbra Collaboration Suite > Administrators
Reload this Page [SOLVED] 5.0.6 FOSS Instaling new Self Signed Cert Error

Welcome to the Zimbra :: Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 02-25-2009, 06:14 AM
Senior Member
  
Posts: 68
Unhappy [SOLVED] 5.0.6 FOSS Instaling new Self Signed Cert Error
On our Zimbra FOSS 5.0.6 install our self signed cert expired yesterday and trying to create a new self signed cert.
When I attempt to create a new self signed cert I get 'Your certificate was not installed due to the error : system failure: XXXXX ERROR: failed to create jetty.pcks12'. Good news is that so far this issue does not seem to be affecting mail flow...:->
Found following thread:
[SOLVED] Expired Cert in 5.0GA can cause mail Delivery failure
but is seems to deal with 5.0GA and 5.0.1. Do I do the same steps in 5.0.6 or are they different now to address this error? I may have caused initial issue as I added my Country, City and State info into the certificate CSR fields as they were blank. My bad.....I am thinking that I just need to remove the old cert info as in that thread above but wanted to make sure that in the version I have the process is the same or similar before I toast my live box.
Thanks for any assistance you can provid!
Reply With Quote
  #2 (permalink)  
Old 02-26-2009, 05:49 AM
Senior Member
  
Posts: 68
Default
Ok, now after a server restart after a full back my Zimbra Server is now dead....
Stuck at step:
(b2) ldapmodify -x -h fqdn.server.tld -D "uid=zimbra,cn=admins,cn=zimbra" -W
I continually get
ldap_bind: Can't contact LDAP server (-1)
Syntax of what I am typing:
Quote:
zimbra@zimbra:~> ldapmodify -x -h zimbra.r8esc.k12.in.us -D "uid=zimbra,cn=admins,cn=zimbra" -W Enter LDAP Password:
ldap_bind: Can't contact LDAP server (-1)
zimbra@zimbra:~>
I have tried many times putting the password in so I am sure I am putting correct password.
What am I missing in that command??????
Reply With Quote
  #3 (permalink)  
Old 02-26-2009, 06:05 AM
Moderator
  
Posts: 7,928
Default
You should really follow Recreating a Self-Signed SSL Certificate - Zimbra :: Wiki.
__________________
Reply With Quote
  #4 (permalink)  
Old 02-26-2009, 06:08 AM
Senior Member
  
Posts: 68
Default
uxbod,
Ok....That is where I am at now and get this
Quote:
zimbra@zimbra:/root> keytool -delete -alias my_ca -keystore /opt/zimbra/java/jre/lib/security/cacerts -storepass changeit
keytool error: java.io.FileNotFoundException: /opt/zimbra/java/jre/lib/security/cacerts (Permission denied)
Thanks!
Reply With Quote
  #5 (permalink)  
Old 02-26-2009, 07:17 AM
Senior Member
  
Posts: 68
Default
Ok, I am a compleate idoit...:->
Thick skull syndorome (TSS) strikes again...
Go here and follow :
Problem with Certificate can cause MTA Failure - Zimbra :: Wiki
AND READ THE LINE:
Quote:
Note, for zcs version 5.0.6 (c) should be Run as root: /opt/zimbra/bin/zmcertmgr deploycrt self
Issue resolved...
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

blog.zimbra.com


Home - Blog - Contact Us - Archive - Top


 

SEO by vBSEO ©2011, Crawlability, Inc.