Here are some notes.
I had my private key file.
a) your_mailserver_com.key
The purchased and downloaded zip file from GoDaddy included three files.
b) 1940e7249efa77a6.crt
c) 1940e7249efa77a6.pem
d) gd_bundle-g2-g1.crt
After creating a full chain certificate from b) and d) above, I replaced the current files.
The location of them are written in /etc/dovecot/conf.d/10-ssl.conf.
# grep -e "ssl_key =" -e "ssl_cert =" /etc/dovecot/conf.d/10-ssl.conf
ssl_cert = </etc/dovecot/my_mailserver_com.pem
ssl_key = </etc/dovecot/my_mailserver_com.key
You might need to adjust the permissions of them.
# ls -l /etc/dovecot/mail_hishawaii_com.pem
-rw-r--r-- 1 root root 7153 Jul 6 12:40 /etc/dovecot/my_mailserver_com.pem
# ls -l /etc/dovecot/mail_hishawaii_com.key
-rw-r--r-- 1 root root 1704 Aug 24 2022 /etc/dovecot/my_mailserver_com.key
Finally, I restarted the Dovecot service.
# systemctl restart dovecot
By the way, on my old email server, the ssl configuration file is locatited in a different location.
# grep -e "ssl_key =" -e "ssl_cert =" /usr/local/dovecot/etc/dovecot/conf.d/10-ssl.conf
ssl_cert = </etc/ssl/certs/dovecot.pem
ssl_key = </etc/ssl/private/dovecot.pem
Then, the restart command is "$ dovecotctl restart" on that server.
0 件のコメント:
コメントを投稿