Multidomain / IP Address Setup (Dovevot 2.2.10 on CentOS7 ) is failing: Fatal: Couldn't parse private ssl_key: error:0906D06C:PEM

[Christian Kivalo]

>But can you explain why you use globally:
>
>ssl_cert = </etc/ssl/dovecot.pem
>ssl_key = </etc/ssl/private/dovecot.pem
>
>and certs for any additional Domain each?
>
>##
>local_name mail.pettijohn-web.com {
>   ssl_cert = </etc/ssl/mail.pettijohn-web.com.crt
>   ssl_key = </etc/ssl/private/mail.pettijohn-web.com.key
>}
>##

he configured the top level "default" ssl_{cert,key} as requested by the documentation

i may quote myself

>from the dovecot ssl wiki page http://wiki2.dovecot.org/SSL/DovecotConfiguration 

>Multiple SSL certificates
>Different certificates per IP and protocol
>
>[snip]
>
>Note that you will still need a top-level "default" ssl_key and ssl_cert as well, or you will receive errors.

i think, but untested, this default ssl_{cert,key} are used for those clients that don't support SNI (as with apache, which uses the cert of the first site).

>I configured it the way you do, but within the default 
>/etc/dovecot/confd structure but
>i had no luck. I testet local_name (SNI), local, local <IPv6>
>(dedicated 
>IPv6 Address but had no lock

it should make no difference whether you use one large config file or the conf.d structure.

your doveconf -n output would really be helpful

regards
- c

>Configinfo:
>1) MTA (Postfix 2.10.1) and MDA (Dovecot 2.2.10) configured on IPv6 
>Addresses
>2) The MTA and MDA are connected to MariaDB (the default MySQL 
>replacement on CentOS7 now for virtual domains, users, passwords,
>aliaes ect
>3) Postfix uses Dovecots SASL Implementation and Postfix and Dovecot 
>talking via LMTP and UNIX Sockets.
>
>Details:
>### yum info postfix ###
>Name        : postfix
>Arch        : x86_64
>Epoche      : 2
>Version     : 2.10.1
>Release     : 6.el7
>Size        : 12 M
>From        : installed
> From Source : debian.n-ix.net_centos_7_os_x86_64_
>Summary     : Postfix Mail Transport Agent
>URL         : http://www.postfix.org
>License     : IBM and GPLv2+
>Description : Postfix is a Mail Transport Agent (MTA), supporting LDAP,
>
>SMTP AUTH (SASL), TLS
>
>### yum info dovecot ###
>Name        : dovecot
>Arch        : i686
>Epoche      : 1
>Version     : 2.2.10
>Ausgabe     : 4.el7_0.1
>Größe       : 3.2 M
>Quelle      : debian.n-ix.net_centos_7_os_x86_64_
>Summary     : Secure imap and pop3 server
>URL         : http://www.dovecot.org/
>Lizenz      : MIT and LGPLv2
>Description : Dovecot is an IMAP server for Linux/UNIX-like systems, 
>written with security
>             : primarily in mind.  It also contains a small POP3 
>server.  It supports mail
>             : in either of maildir or mbox formats.
>
>Cheers,
>Drav