Facebook
Twitter
-
If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
CentOS2Alma discussion
Resolved SSL Cert in webmail.domain
- Thread starter HoracioS
- Start date
Oliver Marugg
Basic Pleskian
HoracioS
Regular Pleskian
Thank you Oliver, but this is not I asked for.
The cert created from the extension is only for domain.tld and www.domain.tld , but doesn't work for webmail.domain.tld subdomain.
It is not possible to create webmail.domain.tld SSL certs from the Let's Encrypt Extension.
Regarding E-mail settings (SSL for postfix and dovecot) it only works with the default server domain. If you are hosting hundreds of domains, all must use the Plesk default domain as mailserver, they cannot use mail.domain or any other subdomain.domain as IMAP nor SMTP server with SSL.
Best regards,
Horacio
The cert created from the extension is only for domain.tld and www.domain.tld , but doesn't work for webmail.domain.tld subdomain.
It is not possible to create webmail.domain.tld SSL certs from the Let's Encrypt Extension.
Regarding E-mail settings (SSL for postfix and dovecot) it only works with the default server domain. If you are hosting hundreds of domains, all must use the Plesk default domain as mailserver, they cannot use mail.domain or any other subdomain.domain as IMAP nor SMTP server with SSL.
Best regards,
Horacio
Oliver Marugg
Basic Pleskian
Hi Horacio
I understand your point. You are right currently "only" domain.tld and www.domain.tld will be generated with letsencrypt and those certs are usable per domain.
What you propose is a letsencrypt generation for domain.tkld www AND webmail as well as certs for the mta/imap each per each domain. This combined with the possibility to choose these certs from the panel per domain. Good idea.
BR oliver
I understand your point. You are right currently "only" domain.tld and www.domain.tld will be generated with letsencrypt and those certs are usable per domain.
What you propose is a letsencrypt generation for domain.tkld www AND webmail as well as certs for the mta/imap each per each domain. This combined with the possibility to choose these certs from the panel per domain. Good idea.
BR oliver
U
UFHH01
Guest
Hi @AlL,
untill Plesk implements the function to an updated Let's Encrypt extension, you can reach your goal with the following steps:
untill Plesk implements the function to an updated Let's Encrypt extension, you can reach your goal with the following steps:
- Disable webmail for the specific domain ( "Home > Subscriptions > example-domain.com > Websites & Domains > (tab ) Mail > (tab ) Mail settings" --- tick the box in front of "example-domain.com" and choose the menu - button "Webmail". At the pop-up menu, pls. choose "None" from the dropdown - list and confirm your setting with "o.k."
- Create a subdomain named "webmail"
- Issue a Let's Encrypt certificate for the newly created subdomain "webmail"
- Download the complete *.pem - file from "Home > Subscriptions > example-domain.com > Websites & Domains > SSL/TLS Certificates" ( green download button on the very right of each listed certificate )
- Delete the subdomain "webmail"
- Re-enable the webmail - usage for the specific domain ( "Home > Subscriptions > example-domain.com > Websites & Domains > (tab ) Mail > (tab ) Mail settings" --- tick the box in front of "example-domain.com" and choose the menu - button "Webmail". At the pop-up menu, pls. choose "YOUR-DESIRED-WEBMAIL-SOFTWARE" from the dropdown - list and confirm your setting with "o.k."
- Create a NEW certificate at "Home > Subscriptions > example-domain.com > Websites & Domains > SSL/TLS Certificates" and upload the previous downloaded *.pem - file, or manually add the credentials for "Private key (*.key)", "Certificate (*.crt)" and "CA certificate (*-ca.crt)".
- Secure webmail for the domain, choosing the newly created webmail - certificate.
9. Smile and enjoy the free Let's Encrypt certificate for the next 90 days ( which will not automatically being renewed, because this certificate is being uploaded manually and the Let's encrypt extension renew - process can't find it, because you deleted the subdomain ).
This suggestion is not perfect ( because of the missing auto-renew-process for the Let's Encrypt - certificate ), but at least you can use a free certificate for your webmail - software on each domain this way, untill Plesk implements another way for Let's Encrypt certificates and Webmail.
This suggestion is not perfect ( because of the missing auto-renew-process for the Let's Encrypt - certificate ), but at least you can use a free certificate for your webmail - software on each domain this way, untill Plesk implements another way for Let's Encrypt certificates and Webmail.
Oliver Marugg
Basic Pleskian
Similar threads
