Search found 330 matches

by zim_mike
Fri Oct 20, 2023 12:36 am
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

These are some of the things I'm seeing in the logs; I tested using https://www.mail-tester.com/ Oct 19 17:32:50 mx /postfix-script[4864]: starting the Postfix mail system Oct 19 17:32:51 mx postfix/master[4866]: daemon started -- version 3.6.1, configuration /opt/zimbra/common/conf Oct 19 17:32:51 ...
by zim_mike
Fri Oct 20, 2023 12:28 am
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

Yes, that's what was missing alright.
Now local hosts seem to be able to connect again.
I'm seeing some weird errors in the logs but it's too early to know what's going on.

I see a bunch of zimbra updates so I think I'll update, reboot and see where this leads.
by zim_mike
Fri Oct 20, 2023 12:13 am
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

Oh geez, I totally missed that, sorry. Thanks for pointing it out.
Now that the file is on the server, what should I do next?
You mentioned I didn't have to run certain things twice so I want to make sure I don't do anything unwanted since it's so close.
by zim_mike
Thu Oct 19, 2023 11:56 pm
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

Sorry, we're getting out of sync. I did run the deploy and showed there was an error or at least a missing script. I don't see it in the deploy directory. $ cd /opt/zimbra/.acme.sh/ $ ./acme.sh --deploy --deploy-hook zimbra -d mx.domain.com [Thu Oct 19 16:01:41 MST 2023] The deploy hook zimbra is no...
by zim_mike
Thu Oct 19, 2023 11:54 pm
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

I rebooted the server. The mail client has not complained about the changed certs, I suppose because it's not self signed. However, the original issue remains, trying to connect from another host on the same network; # openssl s_client -starttls smtp -crlf -connect mx.domain.com:25 CONNECTED(0000000...
by zim_mike
Thu Oct 19, 2023 11:40 pm
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

So even with the 'zimbra' error, you think it completed ok?
I suppose I have to restart the server now since I don't see any change in the mail client connecting at least.
by zim_mike
Thu Oct 19, 2023 11:02 pm
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

Sorry but I didn't notice anything else that you said I should be doing other than re-running the issue command. As for deploying, you don't show any specific directory so I tried from the /opt/zimbra/.acme directory. There is no 'zimbra' file in the deploy directory. $ ./acme.sh --deploy --deploy-h...
by zim_mike
Thu Oct 19, 2023 10:41 pm
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

I redid the step as you suggested, then copied the files to /tmp again. Then I ran the zmcertmgr command but get the same error. $ ./acme.sh --issue --keylength 2048 --dns dns_gd -d mx.domain.com [Thu Oct 19 15:35:32 MST 2023] Using CA: https://acme-v02.api.letsencrypt.org/directory [Thu Oct 19 15:3...
by zim_mike
Thu Oct 19, 2023 9:58 pm
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

Hmm, something's not right; $ ./acme.sh --issue --dns dns_gd --keylength ec-2048 -d mx.domain.com [Thu Oct 19 14:47:20 MST 2023] Using CA: https://acme-v02.api.letsencrypt.org/directory [Thu Oct 19 14:47:21 MST 2023] Create account key ok. [Thu Oct 19 14:47:22 MST 2023] Registering account: https://...
by zim_mike
Thu Oct 19, 2023 9:17 pm
Forum: Administrators
Topic: Acme update is broken
Replies: 62
Views: 95143

Re: Acme update is broken

The first things that aren't clear... >Install acme.sh bash script in your home directory. Ref: https://github.com/Neilpang/acme.sh If you install as root, it install in /root. >If you try this as the zimbra user, you will not have write permission to create the .acme.sh in the zimbra home directory...