Dovecot and certificates/keys on PKCS11 smartcards/HSMs
Graham Leggett
minfrin at sharp.fm
Tue Nov 16 15:17:29 UTC 2021
Hi all,
To configure SSL on dovecot using certificates and keys in files on disk, you specify the following:
# Preferred permissions: root:root 0400
ssl_cert = </etc/ssl/dovecot.pem
ssl_key = </etc/ssl/dovecot.pem
Is there a syntax that will allow a certificate and key to be specified on a smartcard/HSM, as is possible (for example) for httpd at https://httpd.apache.org/docs/trunk/mod/mod_ssl.html#sslcertificatefile:
# Example use of a certificate and private key from a PKCS#11 token:
SSLCertificateFile "pkcs11:token=My%20Token%20Name;id=45”
Regards,
Graham
—
More information about the dovecot
mailing list