SSL Certificate
Niels Dettenbach
nd at syndicat.com
Fri Nov 25 10:01:12 EST 2016
Am Freitag, 25. November 2016, 14:46:12 schrieb Ken Smith via Info-cyrus:
> unable to get certificate from
> '/etc/pki/tls/cyrus-imapd/2_imap2.kensnet.net.pem'
what's your ssl/tls config in imapd.conf?
Did you copied the key content as text with a mouse over text terminals or so?
You need at least:
tlscache_db: ...
tls_cert_file: ...
tls_key_file ...
tls_ca_file: ...
on some systems the:
tls_ca_path:
seems required too (to point where your root certs are to find).
and (optionally) for security details:
tls_cipher_list:
tls_session_timeout:
I remember struggling with some cross-chain certified certificate in the past
on a linux system - i solved that by recreate the ca file
Check with openssl s_client against your apache, what he is delivering on SSL
and compare to your certificate chain you installed / use in cyrus.
hth,
good luck so far and best regards,
Niels.
--
---
Niels Dettenbach
Syndicat IT & Internet
http://www.syndicat.com
PGP: https://syndicat.com/pub_key.asc
---
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.andrew.cmu.edu/pipermail/info-cyrus/attachments/20161125/12cabba4/attachment.sig>
More information about the Info-cyrus
mailing list