Richard G
Verified User
This is what I did.
1.) I wanted to use another cipher/key, so I deleted the existing certificates from the DA GUI for the domain.
2.) Then I selected manual wildcard certificates for the domain and created new ones with ec384 which succeeded properly.
3.) After that I put the setting to autossl again (use server certificate) for the domain. System said changed went fine.
Everything seemed to work correctly, until I checked my mail. I had to acknowledge the use of a certificate with an unkown principal name.
Now that sounded familiar to me. I fixed that one some time ago here (click) myself.
So I checked and all domains should be present in the
So for some reason, when you delete the SSL certificate and create the SSL again manually and then switch to AutoSSL, the Dovecot entry is -not- made. That sounds like a bug to me.
I managed to fix this by just selecting the domains and click the "retry now" button, which instantly showd "finished" and then the domain was back in Dovecot's SNI directory. However, I think this should be done when is switched to autossl, because then also things change and this gives a completed notice.
But it does not check/update Dovecot's SNI directory.
1.) I wanted to use another cipher/key, so I deleted the existing certificates from the DA GUI for the domain.
2.) Then I selected manual wildcard certificates for the domain and created new ones with ec384 which succeeded properly.
3.) After that I put the setting to autossl again (use server certificate) for the domain. System said changed went fine.
Everything seemed to work correctly, until I checked my mail. I had to acknowledge the use of a certificate with an unkown principal name.
Now that sounded familiar to me. I fixed that one some time ago here (click) myself.
So I checked and all domains should be present in the
/etc/dovecot/conf/sni directory. However, th domain has dissapeared from there. Not sure if that already was after the normal request or after the change to autossl again.So for some reason, when you delete the SSL certificate and create the SSL again manually and then switch to AutoSSL, the Dovecot entry is -not- made. That sounds like a bug to me.
I managed to fix this by just selecting the domains and click the "retry now" button, which instantly showd "finished" and then the domain was back in Dovecot's SNI directory. However, I think this should be done when is switched to autossl, because then also things change and this gives a completed notice.
But it does not check/update Dovecot's SNI directory.