asked on

Installing a SSL certificate to sendmail

I bought a certificate in rapidssl, and I'm trying to install it in my server without success.

I follow the instructions from rapidssl from

https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO17006&actp=search&viewlocale=en_US&searchid=1369150430494

and some similar from

http://www.cyberciti.biz/faq/howto-configure-sendmail-ssl-certificate-email/

But my server output an error:

454 4.3.3 TLS not available: error generating SSL handle

My sendmail configuration is the following:

define(`confCACERT_PATH',`/etc/mail/ssl/certs')
define(`confCACERT',`/etc/mail/ssl/certs/intermediate.crt')
define(`confSERVER_CERT',`/etc/mail/ssl/certs/sendmail.pem')
define(`confSERVER_KEY',`/etc/mail/ssl/certs/sendmail.pem')

DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl

And I check if the port 465 is open and is up and running

Could you have any ideas about what I did wrong?

Thank you

arnold

Did you generate the CSR with TLS function attributes?
Does sendmail generate anerror entry during startup dealing with the certificate

Your key and certificate point to the same sendmail.pem file.

Look into sendmail.pem does it have two blocks of data?

ASKER CERTIFIED SOLUTION

arnold

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

noci

Also be sure that file don't have to much access rights.
other read on the private key is a nono.

What does sendmail logs tell you? you may need to increase the log level.