I'm trying to install a commercial certificate for hours now, but I just cannot get it to work (on Zimbra Server 7.1 OS version).
A week ago I have ordered a GlobalSign Domain validated certificate. I successfully installed the certificate on my webserver. However now I'm trying to install it on Zimbra Server, but as stated without luck.
I tried to install the certificate using the admin interface:
- First I created the CSR
- Next I choose the three .cer files provided by GlobalSign
- After clicking 'Finish' I get the following error:
Quote:
|
system failure: XXXXX Error: Unmatching certificate (/opt/zimbra/mailboxd/webapps/zimbraAdmin/tmp/current.crt) and private key (/opt/zimbra/mailboxd/webapps/zimbraAdmin/tmp/current_comm.key) pair.
|
I also tried another approach (using the commandline) without any luck:
Code:
./zmcertmgr deploycrt comm /ssl/www_domain_com.key /ssl/ca_bundle.crt
But that resulted in a similar error:
Quote:
** Verifying /ssl/www_domain_com.key against /opt/zimbra/ssl/zimbra/commercial/commercial.key
unable to load certificate
140117204260496:error:0906D06C:PEM routines:PEM_read_bio:no start line em_lib.c:696:Expecting: TRUSTED CERTIFICATE
XXXXX ERROR: Unmatching certificate (/ssl/www_domain_com.key) and private key (/opt/zimbra/ssl/zimbra/commercial/commercial.key) pair.
XXXXX ERROR: provided cert isn't valid.
|
I don't have any more ideas as to how to get it working
.
P.S. If it matters I still have the 'original' CSR en .key file which I used to request the certificate at GlobalSign.
Any help is much appreciated.
Bugzilla
Wiki
Source
Trying to install Globalsign SSL certificate 
Linear Mode
