Upgrading 5.0.21 -> 6.0.5 SSL Server Certs Changed

[sqb]

I just upgraded our ubuntu6 zimbra server and the pre-existing https server certs are no longer being used.

This caused mayhem as all staff browsers encountered had security exceptions accessing zimbra.

Worse, the new cert created by the upgrade expires in only 9 months 14/11/2010!

This has not occurred on previous upgrades.

What is the story here Zimbra?

How do we prevent this in future?

[phoenix]

I presume you meant 6.0.5 not 6.0.6 as stated in your title? I've changed to to reflect the correct version.

If you're talking about Self Signed Certificates, they are always regenerated during an upgrade.

Please update your forum profile with the output of the following (do not post it in this thread):

Code:

zmcontrol -v

[sqb]

Oops, yep, 6.0.5 GA, close to our server distro Ubuntu 6.06 ;-)

I understand that the internal certs used between zimbra component are regenerated.

But, I've been upgrading since 4.5.5 and this is the first time I recall our web client https certificate has been blown away... or does this occur only on major release number upgrades such as 5.0.x -> 6.0.x? Nothing like this happened on my previous upgrades 5.0.8 -> 5.0.15 and 5.0.15 -> 5.0.21

[phoenix]

Quote:

Originally Posted by sqb

But, I've been upgrading since 4.5.5 and this is the first time I recall our web client https certificate has been blown away... or does this occur only on major release number upgrades such as 5.0.x -> 6.0.x? Nothing like this happened on my previous upgrades 5.0.8 -> 5.0.15 and 5.0.15 -> 5.0.21

Yes destroying the Commercial Certificate was a minor hiccup (English humour ) in 6.0.5, it's been fixed in the next release. I believe there's also some recent forum threads that discussed this problem.