Date: Mon, 4 Feb 2002 21:30:52 -0500 From: Bryan Fullerton <[EMAIL PROTECTED]> [...] Is there any way to make this go? Did I just waste money on a cert I can't use with Cyrus IMAPd?
We use an intermediate cert. Here's the relevant portion of our imapd.conf: tls_cert_file: /imap/conf/server.pem tls_ca_path: /imap/conf/certs tls_key_file: /imap/conf/server.pem # no tls for lmtp tls_lmtp_key_file: disabled "tls_ca_path" is what you want to look at. It should contain OpenSSL hashed files, so do something like: % openssl x509 -hash -noout -in CMU-CA-server-1-06-mime.crt d6e6472d % cp CMU-CA-server-1-06-mime.crt /imap/conf/certs/d6e6472d.0 ... repeat for each CA in the chain ... OpenSSL will figure out what certs to send to the client. Larry
