Results 1 to 2 of 2

Thread: SSL Certs

  1. #1
    ekmeek is offline Active Member
    Join Date
    May 2010
    Posts
    35
    Rep Power
    5

    Default SSL Certs

    We're having a little trouble understanding what we need certificate-wise for our installation, so if someone could enlighten us to what they did we would appreciate it. We're going to be purchasing commercial certificates.

    We have installed the Network Edition of Zimbra. We have 2 Proxies/MTA's, 2 LDAP's, and 2 Mail Stores. We also have 2 load balancers directing traffic to the MTA's proxy servers.

    We're going to be using multiple domain names (smtp.ourdomain.com, imap.ourdomain.com, pop.ourdomain.com, etc) until we complete migration and then we'll start pointing our normal domain (mail.ourdomain.com) to the new Zimbra install.

    Do we need to purchase one or multiple certificates, and do they get installed on all Zimbra servers, or just the Proxies/MTA's or the mail stores? Would we need to also install on the load balancers (probably a question for them)?

    Any guidance appreciated.

    Thanks,

    Eric

  2. #2
    ewilen's Avatar
    ewilen is offline Moderator
    Join Date
    Jun 2008
    Location
    Berkeley, CA
    Posts
    1,474
    Rep Power
    9

    Default

    (Very) partial answer: currently you can only install one cert per Zimbra server. I assume only one per ZCS. So if you want to have multiple domains with SSL, you need to use a UCC cert. There's a bugzilla RFE to allow multiple certs.

    Some load balancers such as Brocade (formerly Foundry) ServerIron offer an SSL termination mode where (as the name says) SSL terminates on the balancer and then traffic is handled in the clear from there to the server. Probably not relevant to your case but it's worth noting as a caveat and/or possible workaround.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. UCC SSL Certs
    By vclawson in forum Administrators
    Replies: 4
    Last Post: 05-30-2010, 05:09 AM
  2. Note on creating SSL certs in opensource zimbra
    By pheonix1t in forum Administrators
    Replies: 2
    Last Post: 01-17-2009, 08:10 AM
  3. [SOLVED] Commercial SSL certs not working
    By veronica in forum Installation
    Replies: 6
    Last Post: 06-30-2008, 05:33 AM
  4. Zimbra Admin Service not using right SSL certs
    By digitaldan in forum Installation
    Replies: 1
    Last Post: 01-02-2008, 09:47 AM
  5. Seperate SSL Certs for pop/imap/smtp/web
    By Si1entDave in forum Administrators
    Replies: 2
    Last Post: 10-27-2007, 04:03 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •