Changing kolab from self signed certificate to commercial one
Daniel Hoffend
dh at dotlan.net
Fri Jan 24 14:06:46 CET 2014
Hi Henrik
maybe you wanna take a look on my ssl howto i've started to write and
opened a pull request for. It covers multiple parts of how to secure
each kolab service with ssl certificates. For my example I used startcom
ssl certs.
https://github.com/kanarip/kolab-docs/pull/10/files
https://github.com/dhoffend/kolab-docs/blob/master/source/howtos/secure-kolab-server.rst
https://kolab.dotlan.net/docs/howtos/secure-kolab-server.html
--
Regards
Daniel
------ Originalnachricht ------
Von: "Henrik Bohr" <henrik.bohr at outlook.com>
An: users at lists.kolab.org
Gesendet: 24.01.2014 14:02:04
Betreff: Changing kolab from self signed certificate to commercial one
>Dear all,
>
>
>
>when I set up Kolab 3.1, I used the initSSL script of Timotheus.
>
>Now after some time I would like to exchange the self signed
>certificate by a commercial one from RapidSSL.
>
>Unfortunately I do not get it running correctly. I tried to change the
>certificates files manually, but that does not lead to a correct
>certificate for my domain.
>
>Also I downloaded the ca_file from
>https://knowledge.rapidssl.com/library/VERISIGN/INTERNATIONAL_AFFILIATES/RapidSSL/AR1548/RapidSSLCABundle.txt
>but I have no idea what the ca_subclass_file is and how to get it.
>
>
>
>Do I have to do something similar to the following lines from the
>script?
>
>pwd=foo
>
>openssl pkcs12 -export -in $key_directory/private/$server_name.crt
>-inkey $key_directory/private/$server_name.key -out
>/tmp/$server_name.p12 -name Server-Cert -passout pass:$pwd
>
>echo "$pwd" > /tmp/foo
>
>pk12util -i /tmp/$server_name.p12 -d /etc/httpd/alias -w /tmp/foo -k
>/dev/null
>
>
>
>I would be most grateful for any help, if somebody knows how to get
>kolab running with the new RapidSSL certificate.
>
>
>
>Thanks a lot,
>
>
>
>Henrik
>
>
>
>
>
More information about the users
mailing list