Link to home
Create AccountLog in
Avatar of CloudHelpdeskOne
CloudHelpdeskOne

asked on

Installing a SSL certificate to sendmail

I bought a certificate in rapidssl, and I'm trying to install it in my server without success.

I follow the instructions from rapidssl from

https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO17006&actp=search&viewlocale=en_US&searchid=1369150430494

and some similar from

http://www.cyberciti.biz/faq/howto-configure-sendmail-ssl-certificate-email/

But my server output an error:

454 4.3.3 TLS not available: error generating SSL handle

My sendmail configuration is the following:

define(`confCACERT_PATH',`/etc/mail/ssl/certs')
define(`confCACERT',`/etc/mail/ssl/certs/intermediate.crt')
define(`confSERVER_CERT',`/etc/mail/ssl/certs/sendmail.pem')
define(`confSERVER_KEY',`/etc/mail/ssl/certs/sendmail.pem')

DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl

And I check if the port 465 is open and is up and running

Could you have any ideas about what I did wrong?

Thank you
Avatar of arnold
arnold
Flag of United States of America image

Did you generate the CSR with TLS function attributes?
Does sendmail generate anerror entry during startup dealing with the certificate

Your key and certificate point to the same sendmail.pem file.

Look into sendmail.pem does it have two blocks of data?
ASKER CERTIFIED SOLUTION
Avatar of arnold
arnold
Flag of United States of America image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of noci
noci

Also be sure that file don't have to much access rights.
other read on the private key is a nono.

What does sendmail logs tell you? you may need to increase the log level.