Results 1 to 8 of 8

Thread: Problems with shared let's encrypt certificate

  1. #1
    Join Date
    Mar 2011
    Posts
    60

    Problems with shared let's encrypt certificate

    Hi, on my server the hostname it's like "srv1.hostname.com" under Let's Encrypt SSL.

    but, if i use srv1.hostname.com for imap and smtp on any domain, SSL are usually recognised by any client, email working correctly but after any SSL renew it's not longer recognised.
    If i use mail.domain.com, need confirm SSL and the certificate it's always read like srv1.hostname.com so the problem after renew, persist.
    Any suggestions?

    Thanks
    Last edited by RickDeckard; 04-20-2018 at 03:49 AM.

  2. #2
    Join Date
    Apr 2005
    Location
    GMT +7.00
    Posts
    12,307
    Hello,

    - Outdated OpenSSL which does not support SNI.
    - Outdated OS with an outdated OpenSSL.
    - Exim installed without SNI support
    - Dovecot installed without SNI support

    Check the requirements and settings and visit https://help.directadmin.com/ for guides.

  3. #3
    Join Date
    Mar 2011
    Posts
    60
    SNI support work correctly with all domain on the same shared ip, with Let's Enrcypt or others autority.
    Exim was installed using custombuild 2.0, eximconf_release 4.5 and related dovecot_conf.
    Any more suggestions?

    Thanks
    Last edited by RickDeckard; 04-21-2018 at 10:50 PM.

  4. #4
    Join Date
    Aug 2006
    Location
    LT, EU
    Posts
    7,156
    Martynas Bendorius
    MB Martynas IT. Professional server management company. Official DirectAdmin, CloudLinux, LiteSpeed and Comodo partners.

  5. #5
    Join Date
    Mar 2011
    Posts
    60
    Thanks, i'm trying this option.

  6. #6
    Join Date
    Mar 2011
    Posts
    60
    A little help

    need

    echo "action=rewrite&value=mail_sni" >> /usr/local/directadmin/data/task.queue

    onetime, and

    echo "action=rewrite&value=mail_sni&domain=domain.com" >> /usr/local/directadmin/data/task.queue

    for each domain including hostname?
    Thanks

  7. #7
    Join Date
    Apr 2005
    Location
    GMT +7.00
    Posts
    12,307
    If you want to tell all live SSL domains to have their dovecot configs written, type;
    Code:
    echo "action=rewrite&value=mail_sni" >> /usr/local/directadmin/data/task.queue


    https://www.directadmin.com/features.php?id=2019

  8. #8
    Join Date
    Mar 2011
    Posts
    60
    Thanks, so the commend

    echo "action=rewrite&value=mail_sni&domain=domain.com" >> /usr/local/directadmin/data/task.queue

    need if i want to update a single domain only?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •