[Dovecot] Multiple certificates

Phill Edwards philledwards at gmail.com
Mon Oct 30 09:42:31 UTC 2006


> > Login failure: Certificate failure for XXX.homelinux.com: self signed
> > certificate: /C=AU/ST=NSW/L=Sydney/O=Edwards/OU=IMAP
> > server/CN=imap.edwards.home/emailAddress=philledwards at gmail.com
>
> Which side gives you this error? Dovecot or xs2mail.com?

xs2mail

> IMHO: The error looks like the "self signed" part is the problem. You
> probably need to store the public certificate on xs2mail.com, in order the
> server can validate it.
> Do you use the _same_ certificate with Dovecot as with UW-Imap? This
> should give you the same situation as before.

Not the same cert, but the Dovecot one was generated in the same way
as the UW-imap one.


> > <snip>
> > 1.0-tests support "virtual servers", where this is possible:
> >
> > server foo {
> > listen = 1.2.3.4
> > ssl_cert_file = /etc/ssl/certs/foo.cer
> > }
> >
> > server bar {
> > listen = 1.2.3.5
> > ssl_cert_file = /etc/ssl/certs/bar.cer
> > }
> > </snip>
> >
> > Can anyone help me figure this out?
>
> Give your server two IP addresses, then bind a Dovecot with certificate
> foo.cer on one address, and a Dovecot with bar.cer on the other one.

This could be good as it already has 2 addresses - a private
192.168.x.x address and a public IP address from the cable ISP. So do
I just put the lines above (with the correct addresses) in   to
/etc/dovecot.conf?

Thanks for the help so far.

Regards,
Phill


More information about the dovecot mailing list