bypass certificate in open source edition?

**bbarrons** · 11-28-2008, 09:23 AM

Can I run the open source edition without it asking users to auth a certificate the first time? Can I lower the security level of zimbra so that it doesnt ask a new user to add the certificate?
Users here freak out when firefox tells them that they might be using an unauthorized site and do they really want to continue....... Or, how do I get an auth certificate for an open source edition?
thanks
Bill B

**phoenix** · 11-28-2008, 09:34 AM

That's not Zimbra asking that, it's your browser asking if you want to trust the site you're connecting to. If you want it to go away you could always get a commercial certificate.

**bbarrons** · 11-28-2008, 09:39 AM

I was wondering if this could be changed by reducing the security level. What are my options... like, can I buy a certificate that doesnt need this auth? Can I run the server in a way that doesnt need a certificate? I know if I purchase a network edition I get a certificate that is signed??? correct?
Some of the users want to be able to use a mail client. Thnderbird asks once to accept the certificate, outlook asks everytime it gets mail.....I am just trying to weigh my options...... Because of this certificate questions I have some users thinking we are doing something wrong.
So, I am just looking for what are my options......
thanks
Bill B

**Bill Brock** · 11-28-2008, 09:40 AM

They can create an exception in Firefox so it won't bother them again. At least until your cert expires and you have to create a new one.

**bbarrons** · 11-28-2008, 09:49 AM

I had them all create it. We all went to the computer lab the first day to show them how to use it. I also wanted them to use it at home. Everyone thought we were doing something we shouldnt have because of the message. I even created a html file to show them how to accept it and what to look for. I just wanted to be sure I wasnt creating more trouble for myself if it was not needed. So, I guess what I wanted to know is, do I need to run a secure server if all users still need a password to login? is running https my only choice?
I am just making sure I have it straight in my head....thats all.
thanks
Bill B

**Bill Brock** · 11-28-2008, 01:36 PM

I think the main drawback to this is username and passwords going over the Internet in plain text. The e-mail itself will also be visible.

Zimbra

Thread: bypass certificate in open source edition?

LinkBack

Thread Tools

Search Thread

Display

bypass certificate in open source edition?

yep I know

They can create an exception.

and they did

Using HTTP instead of HTTPS

Thread Information

Users Browsing this Thread

Similar Threads

Zimbra + Funambol Sync4j Code

ISP mail connection errors out

[SOLVED] Is zimbra really open source product ?

Error message in Server status

M3 problem with shares

Posting Permissions