[SOLVED] Self-signed certificates not trusted

[symo]

Hello, on my devices I started to get an error related to self signed certificates that could not be trusted by email clients, so it's impossible to send email. I tried to regenerate the certificate following the kb article 21727 but I still can't send email both from computer and mobile devices.
Is there any workaround to solve this issue?

Thanks in advance
Simone

[phoenix]

The 'workaround' would be to get yourself a certificate issued by a trusted authority. They usually cost money but if you don't want to pay then you could look at getting a certificate from LetsEncrypt, read all about it here: https://letsencryptonline.com/ There's also a sticky 'how to' thread in this Administrators forum, have a read of that for full details on what you need to do for Zimbra.

[symo]

Thanks phoenix!

[jorgedlcruz]

Hi Symo,
I've been using for production Comodo SSL Certificates, you can find the wiki page here:

• https://wiki.zimbra.com/wiki/Installing ... laboration

And on namecheap the price is really low:

• https://www.namecheap.com/security/ssl- ... omodo.aspx

Make sure you protect both your FQDN and your servername, so for example if your servername is myserver.domain.com and your FQDN is mail.domain.com you will need to buy a multi-SAN (multidomain SSL) or a Wildcard, if both are the same, then you are lucky enough to have a really cheap options on namecheap.

Or go with the Let's Encrypt as phoenix said, I wanted to give an alternative option.

Cheers