On 22/4/22 7:25 am, alice@coakmail.com wrote:
hello

I have setup website using letsencrypt for certification.
how can I setup IMAP to use this certs as well?

Thank you.

Make entries in /etc/dovecot/conf.d/10-ssl.conf

ssl = required

ssl_cert = </etc/letsencrypt/live/mail.example.com/cert.pem
ssl_key = </etc/letsencrypt/live/mail.examplel.com/privkey.pem


in /etc/dovecot/dovecot.conf or in /etc/dovecot/conf.d/10-ssl.conf

put

ssl_min_protocol = TLSv1.2
ssl_cipher_list = EECDH+AESGCM:EDH+AESGCM
ssl_prefer_server_ciphers = yes

You can override the global ssl certificates for specific domains in /etc/dovecot/dovecot.conf

local special.example.com {
  protocol imap {
    ssl_cert = </etc/letsencrypt/live/special.example.com/fullchain.pem
    ssl_key = </etc/letsencrypt/live/special.example.com/privkey.pem

  }
}



--
Jeremy