Multiple SSL Certs with virtual domains?
Eric Luyten
Eric.Luyten at vub.ac.be
Thu Jan 21 04:46:13 EST 2010
On Thu, January 21, 2010 10:35 am, Scott Lambert wrote:
> I am about to bring up the second of several virtual domains on my
> Cyrus-IMAPd 2.3.15 installation. I've been Googling but can't seem
> to come up with a useful search string for finding posts talking about using
> multiple secure certificates for POP/IMAP connections to mail.domain1.com and
> mail.domainN.com. We are rolling up multiple small mail servers into one
> host.
>
> The only thing I've been able to figure is that I will need to at least
> have multiple imapd-domainX.conf files and have multiple pop3(s)/imap(s) lines
> in cyrus.conf for each domain so that the secure certs can match the hostname
> configured in the user's existing mail program.
>
> Is there a more elegant method than something like the below plan?
<SNIP>
Scott,
It sure looks pretty elegant to me :-)
We (two domains, 65,000 users) have been running this type of Cyrus config
for over three years now.
Another, far less appealing, approach is to use certificates containing
alternates but this forces you to re-install them when a new domain is
added and, on top of it : certain versions of a much used mail client of
a well known Redmond, WA company have troubles accepting multi-domain
certificates.
Regards,
Eric Luyten, Computing Centre VUB/ULB, postmaster.
More information about the Info-cyrus
mailing list