Multiple SSL Certificates, Server Name Indication (SNI) for HTTPS

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
Post Reply
User avatar
maumar
Outstanding Member
Outstanding Member
Posts: 390
Joined: Fri Sep 12, 2014 10:28 pm

Multiple SSL Certificates, Server Name Indication (SNI) for HTTPS

Post by maumar »

Hello
I have domain example.com and I should protect hrl https://mail.example.com
you say:

Code: Select all

Add the new domain, in this case example.com. Set zimbraVirtualHostName to mail.example.com and zimbraVirtualIPAddress to 1.2.3.4. Make sure the zimbraVirtualHostName is set to the name which will be used to access the domain (URL) and the SSL certificate is signed for the same name.
 zmprov md example.com zimbraVirtualHostName mail.example.com zimbraVirtualIPAddress 1.2.3.4
I will use letsencrypt.
My doubt is: should I get a letsencrypt cert for example.com or for mail.example.com?
Or should I get 2 certs, one for example.com and one for mail.example.com?
Please advise as I am very confused :(

My best regards
User avatar
jorgedlcruz
Zimbra Alumni
Zimbra Alumni
Posts: 2782
Joined: Thu May 22, 2014 4:47 pm

Re: Multiple SSL Certificates, Server Name Indication (SNI) for HTTPS

Post by jorgedlcruz »

Hello,
Is it not now Let'sencrypt accepting wildcards too? Go for a wildcard if you can, if not, just have an SSL for the virtual hostname you want to protect.
Jorge de la Cruz https://jorgedelacruz.es
Systems Engineer at Veeam Software https://www.veeam.com/
Post Reply