Install Commercial SSL to OpenSource Zimbra server
Posted: Tue Oct 09, 2018 3:46 am
Hi all,
I have a open source Zimbra server (6.0.2_GA_192.RHEL4_20091020152629 CentOS4 FOSS edition) and i using Self-Singed Certificate
I have a issue with Apple device when they upgrade policy in IOS 12 version
I purchase positiveSSL from Comondo and install it in my our server but not sucessfully
When i check the Key is OK
/opt/zimbra/bin/zmcertmgr verifycrt comm /opt/zimbra/ssl/zimbra/commercial/commercial.key /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt /opt/tool/ssl/hcmcexch2.atvn.com.vn.ca-bundle
** Verifying /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt against /opt/zimbra/ssl/zimbra/commercial/commercial.key
Certificate (/opt/tool/ssl/hcmcexch2.atvn.com.vn.crt) and private key (/opt/zimbra/ssl/zimbra/commercial/commercial.key) match.
Valid Certificate: /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt: OK
But i cannot deploy
/opt/zimbra/bin/zmcertmgr deploycrt comm /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt /opt/tool/ssl/hcmcexch2.atvn.com.vn.ca-bundle
** Verifying /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt against /opt/zimbra/ssl/zimbra/commercial/commercial.key
Certificate (/opt/tool/ssl/hcmcexch2.atvn.com.vn.crt) and private key (/opt/zimbra/ssl/zimbra/commercial/commercial.key) match.
Valid Certificate: /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt: OK
** Copying /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt to /opt/zimbra/ssl/zimbra/commercial/commercial.crt
** Appending ca chain /opt/tool/ssl/hcmcexch2.atvn.com.vn.ca-bundle to /opt/zimbra/ssl/zimbra/commercial/commercial.crt
** Saving server config key zimbraSSLCertificate...done.
** Saving server config key zimbraSSLPrivateKey...done.
** Installing mta certificate and key...done.
** Installing slapd certificate and key...done.
** Installing proxy certificate and key...done.
** Creating pkcs12 file /opt/zimbra/ssl/zimbra/jetty.pkcs12...failed.
XXXXX ERROR: failed to create jetty.pkcs12
No certificate matches private key
have anybody can help me to solve this issue?
Thanks and Regards,
Vinh
I have a open source Zimbra server (6.0.2_GA_192.RHEL4_20091020152629 CentOS4 FOSS edition) and i using Self-Singed Certificate
I have a issue with Apple device when they upgrade policy in IOS 12 version
I purchase positiveSSL from Comondo and install it in my our server but not sucessfully
When i check the Key is OK
/opt/zimbra/bin/zmcertmgr verifycrt comm /opt/zimbra/ssl/zimbra/commercial/commercial.key /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt /opt/tool/ssl/hcmcexch2.atvn.com.vn.ca-bundle
** Verifying /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt against /opt/zimbra/ssl/zimbra/commercial/commercial.key
Certificate (/opt/tool/ssl/hcmcexch2.atvn.com.vn.crt) and private key (/opt/zimbra/ssl/zimbra/commercial/commercial.key) match.
Valid Certificate: /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt: OK
But i cannot deploy
/opt/zimbra/bin/zmcertmgr deploycrt comm /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt /opt/tool/ssl/hcmcexch2.atvn.com.vn.ca-bundle
** Verifying /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt against /opt/zimbra/ssl/zimbra/commercial/commercial.key
Certificate (/opt/tool/ssl/hcmcexch2.atvn.com.vn.crt) and private key (/opt/zimbra/ssl/zimbra/commercial/commercial.key) match.
Valid Certificate: /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt: OK
** Copying /opt/tool/ssl/hcmcexch2.atvn.com.vn.crt to /opt/zimbra/ssl/zimbra/commercial/commercial.crt
** Appending ca chain /opt/tool/ssl/hcmcexch2.atvn.com.vn.ca-bundle to /opt/zimbra/ssl/zimbra/commercial/commercial.crt
** Saving server config key zimbraSSLCertificate...done.
** Saving server config key zimbraSSLPrivateKey...done.
** Installing mta certificate and key...done.
** Installing slapd certificate and key...done.
** Installing proxy certificate and key...done.
** Creating pkcs12 file /opt/zimbra/ssl/zimbra/jetty.pkcs12...failed.
XXXXX ERROR: failed to create jetty.pkcs12
No certificate matches private key
have anybody can help me to solve this issue?
Thanks and Regards,
Vinh