• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Forwarded to devs individual domain can't use HTTPS for webmail if webmail.forceHttp=true

E

enduser

Basic Pleskian
Username:

TITLE

individual domain can't use HTTPS for webmail if webmail.forceHttp=true

PRODUCT, VERSION, OPERATING SYSTEM, ARCHITECTURE

Plesk Obsidian 18.0.48
CentOS 7

PROBLEM DESCRIPTION

Since Plesk for Windows auto redirect webmail HTTP to HTTPS by default even no SSL is installed, so we use webmail.forceHttp=true to disable such redirect.

However, if one domain customer install and set SSL for their webmail, the webmail is still HTTP. It seems that it won't update IIS when webmail.forceHttp=true .

We don't want auto redirect HTTP to HTTPS because webmail with HTTPS always shows invalid SSL error until customer install valid SSL. However using webmail.forceHttp=true that prevent any customer who want to use valid SSL for their webmail.

STEPS TO REPRODUCE

  1. Fresh install Plesk for Windows
  2. add webmail.forceHttp=true in panel.ini
  3. create a subscription
  4. in the subscription, install SSL & apply it to "SSL/TLS certificate for webmail"
  5. IIS > MailEnable WebMail > Bindings > it is still http but not https

ACTUAL RESULT

IIS bindings is still http but not https

EXPECTED RESULT

IIS bindings is https

Alternatively, referring to ChristophRo in the discussion, Plesk may abandon "webmail.forceHttp=true" and un-bundle the automatic http --> https redirect for webmail

ANY ADDITIONAL INFORMATION

Issue - individual domain can't use HTTPS for webmail if webmail.forceHttp=true

YOUR EXPECTATIONS FROM PLESK SERVICE TEAM

Confirm bug
 
Actually, this is expected behaviour. Forcing is forcing. There are no exclusions.

We would suggest either managing redirects manually or creating the corresponding feature request on Plesk UserVoice.

Note: Nowadays, it is highly recommended to use secured connections. That's why force redirection to HTTPS was implemented. Moreover, Plesk provides the possibility to issue free Let's Encrypt certificates so all domains might be secured.
 
You must log in or register to reply here.

Similar threads

E
Issue individual domain can't use HTTPS for webmail if webmail.forceHttp=true
Replies
9
Views
2K
enduser
E
L
Issue When Mail Domain SSL Renews The Cert Reverts To domain.tld
Replies
5
Views
2K
Ladylinux
L
V
Resolved Roundcube config.local.php not read
Replies
3
Views
825
Visnet
V
C
Question How can I secure my Mail with Letsencrypt next to Cloudflares Origin Certificate in Plesk?
Replies
4
Views
1K
cpulove
C
T
Issue Forwarded domain can't be secured
Replies
3
Views
967
TomBoB
T
Back
Top