[Dovecot] Certificat Outlook 2003

Michael Orlitzky michael at orlitzky.com
Wed Aug 11 18:39:23 EEST 2010


On 08/11/2010 03:30 AM, Richard Gliebe wrote:
> On 8/10/10 6:01 PM Michael Orlitzky wrote:
>>
>> You can still download the certificate (from, say, your website) and
>> install it on each workstation. Just right click the cert file, and I
>> think the option is either "Install" or "Import."
>
> Will this also works with *.pem certificates?

Short answer: yes, although you might have to rename the cert file with 
an extension that Windows understands.

Long answer:

The PEM format is really just a container format for keys and some other 
stuff, so you should double-check what's in the PEM file first. Often, 
they will contain,

   * Just a private key
   * Just a public key or certificate
   * Both a private and public key

For example, if your CERTDIR and KEYDIR are the same when you run 
dovecot_mkcert.sh, then both the public and private keys will be stored 
in the same file (e.g. dovecot.pem).

You want to be careful that you don't ship your private key off to the 
clients. The certificate is contained in one of those PEM files; if you 
put it on a Windows box and give it an extension that Windows 
understands, you should be able to import it.

The PEM files are just plain text, and it should be obvious from the 
"BEGIN CERTIFICATE" or "BEGIN RSA PRIVATE KEY" which one you're looking at.


More information about the dovecot mailing list