Wolfgang Jeltsch writes:
Hello,I run a webserver with SSL support. I use a certificate signed by a real CA for it. I would like to reuse this certificate for ESMTP and IMAP over SSL. Is this possible? The mailserver can be made to use the same domain as the webserver.Courier uses *.pem files while for Apache, I have three files, one with the secret key, one with the certificate and one with the certificate chain. Can I just concatenate the secret key and certificate to form a *.pem file? How
You have to convert each file to pem format first, then concatenate them together.
In the concatenated file, the private key goes first, followed by your certificate, followed by the intermediate cert. I'm not actually quite sure of the last part, you may have to have the intermediate cert first, then your own certificate. Try it both ways.
do I create the DH PARAMETERS section which is at the end of usual Courier *.pem files? Is it possible to include the certificate chain in the *.pem files and send it to the clients?
You only need the DH parameters if you use a DHA certificate. You can generate it with the 'openssl dhparam' command.
pgpS57x86KjQV.pgp
Description: PGP signature
------------------------------------------------------------------------------
_______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
