> I'm sorry if this is a frequent question, but we have deployed a new Postfix > server and we have enabled Opportunistic TLS. We have noticed that even with > a valid certificate when connecting to gmail servers the Untrusted TLS > connection is being displayed. > > I have updated the ca-certificate package, but the issue is still the same.
Does postfix use the correct file? (RHEL example) smtpd_tls_CAfile = /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem smtp_tls_CAfile = /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem Best regards Gerald
