Thanks for the reply! Q: you installed a SAN certificate in ASSP so that now ASSP is able to secure connections using such a certificate, ok till now ? >I was using a regular wild card cert until now and yes it was fine (still is as I went back to it)
Q: If so, what do you mean by "pull the first domain", that is, "who" complains about the certificate ? > the new cert worked fine as well BUT not on the other domains in the SAN, only the first domain listed in the SAN worked without an SSL mismatch error. > Who complains? the email program gives a certificate warning about the hostname not matching. There is nothing wrong with the actual ssl connection, just the recognition of the OTHER hostnames on the SSl certificate but ill give those commands a try when I can retest the other cert (cant do it during the day) Thanks! John -----Original Message----- From: Grayhat [mailto:[email protected]] Sent: June-17-16 3:07 AM To: [email protected] Subject: Re: [Assp-user] SAN ssl suport :: On Thu, 16 Jun 2016 08:52:09 -0400 :: <072801d1c7cd$e522a0d0$af67e270$@ca> :: "Ethical Host - John MacKenzie" <[email protected]> wrote: > Have support for SAN wildcard ssl certificates? I tried using it but > assp seemed to only pull the first domain listed on the certificate > for validation which doesn't work for me Hm... not sure I understood; you installed a SAN certificate in ASSP so that now ASSP is able to secure connections using such a certificate, ok till now ? If so, what do you mean by "pull the first domain", that is, "who" complains about the certificate ? Also, when it comes to SSL it's always a good idea to install OpenSSL and then check things using for example a command like openssl s_client -starttls smtp -connect mail.server.name.or.ip:25 and check the results for warnings or errors or, willing to fetch and dump the certificate details, you may use openssl s_client -showcerts -starttls smtp -connect server:25|openssl x509 -text the above will show you all the details of the certificate returned by the server (ASSP in your case) ---------------------------------------------------------------------------- -- What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic patterns at an interface-level. Reveals which users, apps, and protocols are consuming the most bandwidth. Provides multi-vendor support for NetFlow, J-Flow, sFlow and other flows. Make informed decisions using capacity planning reports. http://sdm.link/zohomanageengine _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user ------------------------------------------------------------------------------ What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic patterns at an interface-level. Reveals which users, apps, and protocols are consuming the most bandwidth. Provides multi-vendor support for NetFlow, J-Flow, sFlow and other flows. Make informed decisions using capacity planning reports. http://sdm.link/zohomanageengine _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
