[Dovecot] problem with server certificate: dovectot.pem

Joseph Tam tam at math.ubc.ca
Thu Jul 14 05:54:50 EEST 2005


> Date: Wed, 13 Jul 2005 23:46:33 +0300
> From: vladone <vladone at spaingsm.com>
> Subject: [Dovecot] problem with server certificate: dovectot.pem
>
> I have an mail server with postfix and dovecot.
> All works fine, but now is change my domain. After changed
> configurations i can receive (or send) mail without STARTTLS,
> but when i try to use this option i receive:
> "TLS handshake failure. Invalid server certificate (Key material
> mismatch)"
>
> I dont know what is this.
> I use certificate that is generate with script for dovecot (that work
> at begining).
>  Even i try to rebuild this certificate acording with new domain but
> nothing.
> Where is my problem?

Yes, of course.  Certificates are made out to a particular hostname (e.g.
smtp.wahtever.com), and if you change your server hostname or move it to another
server, a new certificate will have to be made out to the new hostname.

You could also configure your client ignore certificate mismatches, but this
wouldn't be the best option.

Joseph Tam <tam at math.ubc.ca>


More information about the dovecot mailing list