On 22/4/22 7:25 am, alice at coakmail.com wrote:> hello
>
> I have setup website using letsencrypt for certification.
> how can I setup IMAP to use this certs as well?
>
> Thank you.
>
Make entries in /etc/dovecot/conf.d/10-ssl.conf
ssl = required
ssl_cert = </etc/letsencrypt/live/mail.example.com/cert.pem
ssl_key = </etc/letsencrypt/live/mail.examplel.com/privkey.pem
in /etc/dovecot/dovecot.conf or in /etc/dovecot/conf.d/10-ssl.conf
put
ssl_min_protocol = TLSv1.2
ssl_cipher_list = EECDH+AESGCM:EDH+AESGCM
ssl_prefer_server_ciphers = yes
You can override the global ssl certificates for specific domains in
/etc/dovecot/dovecot.conf
local special.example.com {
? protocol imap {
??? ssl_cert = </etc/letsencrypt/live/special.example.com/fullchain.pem
??? ssl_key = </etc/letsencrypt/live/special.example.com/privkey.pem
? }
}
--
Jeremy
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<https://dovecot.org/pipermail/dovecot/attachments/20220422/b7518851/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 236 bytes
Desc: OpenPGP digital signature
URL:
<https://dovecot.org/pipermail/dovecot/attachments/20220422/b7518851/attachment.sig>