confusion about setting up certificates
jimm at simutronics.com
Tue Mar 29 11:04:19 EST 2005
> On Fri, 2005-03-18 at 10:43 +1300, Roland Pope wrote:
> > ----- Original Message -----
> > From: "Jim Miller" <jimm at simutronics.com>
> > > My apologies if this rambles on abit but I'm very frustrated
> and can't
> > > seem
> > > to figure out what I'm missing. I've setup cyrus-imap 2.2.10 to use
> > > openssl
> > > certificates, users can connect and get mail just fine until I set
> > > tls_require_certs: true -- When I do this Outlook users can no longer
> > > connect but Thunderbird users can.
> > Does Outlook support Client certs for IMAp TLS connections?
> > I didn't think it did, which is probably where your problem lies.
> > Certainly there is nowhere in Outlook's config for specifying
> a client cert
> > to be used for a particular account.
> sure it does...
> Tools -> Options -> Security -> Digital ID's -> Import
> it's also integrated with Outlook Express/IE so you can simply Install
> Certificates with IE
> Now if you want to tie it to a specific user account, I would presume
> that you would have to generate a certificate with the cn being the
> email address of the user.
I'm still having trouble will Outlook and connecting with IMAPS to
when I set 'tls_reqire_cert: true'. However I don't have the problem when I
set tls_imap_reqire_cert: true'
I guess I don't understand the difference between the two. Could someone
please explain the difference between them?
# Require a client certificate for ALL services (imap, pop3, lmtp, sieve).
# tls_require_cert: true
# Require a client certificate for imap ONLY.
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
More information about the Info-cyrus