由于Google的chrome不认可赛门铁克的证书,因此要更换新证书
0.8.6版本 0.9.4版本
- /etc/pki/tls/certs/iRedMail_CA.pem - /etc/ssl/certs/iRedMail.crt
- /etc/pki/tls/private/iRedMail.key - /etc/ssl/private/iRedMail.key
scp /etc/pki/tls/certs/iRedMail_CA.pem 192.168.1.100:/etc/ssl/certs/iRedMail.crt
scp /etc/pki/tls/private/iRedMail.key 192.168.1.100:/etc/ssl/private/iRedMail.key
配置 Postfix/Dovecot 使用SSL证书
Postfix (SMTP 服务器)
直接使用 postconf 命令来更新 SSL 证书相关的设置:
postconf -e smtpd_use_tls='yes'
postconf -e smtpd_tls_cert_file='/etc/ssl/certs/iRedMail.crt'
postconf -e smtpd_tls_key_file='/etc/ssl/private/iRedMail.key'
修改后需重启 Postfix 服务。
Dovecot (POP3/IMAP 服务器)
Dovecot 的 SSL 证书设置定义在主配置文件 /etc/dovecot/dovecot.conf
ssl = required
ssl_cert = </etc/ssl/certs/iRedMail.crt
ssl_key = </etc/ssl/private/iRedMail.key
修改后需重启 Dovecot 服务。
service apache2 restart
service postfix restart
参考 https://docs.iredmail.org/use.a.bought.ssl.certificate-zh_CN.html
