Hi,
I have created my own server certificate from an external CA and I would like to swap the certificates on my UCS kopano server for all the services (webapp, imap, active sync, etc.…)
From searching the forum I found some files in /etc/kopano/ssl
- private.key (looks like a private key)
- cert.pem (looks like a cert)
- server.pem (looks like cert+key)
So I copied my own files to that folder:
- mail.domain.local.key (my private key)
- mail.domain.local.crt (my cert file)
- mail.domain.local.pem (my cert+key file)
Then I changed all the kopano ssl settings in the ucs registry that I could find:
kopano/cfg/gateway/ssl_certificate_file = /etc/kopano/ssl/mail.domain.local.crt
kopano/cfg/gateway/ssl_private_key_file = /etc/kopano/ssl/mail.domain.local.key
kopano/cfg/ical/ssl_certificate_file = /etc/kopano/ssl/mail.domain.local.crt
kopano/cfg/ical/ssl_private_key_file = /etc/kopano/ssl/mail.domain.local.key
kopano/cfg/server/server_ssl_key_file = /etc/kopano/ssl/mail.domain.local.pem
I changed the ownership to kopano chown kopano:kopano ……
But: Nothing happens. Even after a reboot all the services still use the old certificates. Not even an error message
Is there somewhere a guide that says what file is used for what service and what registry value does what?
Is there even a better way to change the certificates? Somewhere in die UI?
Cheers
Michael