On Mon, Nov 10, 2008 at 9:20 PM, Victor Duchovni <[EMAIL PROTECTED]> wrote: >> On Mon, Nov 10, 2008 at 5:26 PM, Noel Jones <[EMAIL PROTECTED]> wrote: >> > If your existing verisign certificate is a "server" type certificate with >> > the right FQDN, you should be able to use it with postfix.
I believe it is a server type certificate. Its a basic Verisign SSL CA cert. which is visible from my webmail server. https://mail.ideorlando.org When I look at the cert's on the server, I see the following: mail:/etc/apache2/ssl# pwd /etc/apache2/ssl mail:/etc/apache2/ssl# ls -l total 12 -rw-r--r-- 1 root root 1659 2008-09-11 16:47 intermediate.crt -rw-r--r-- 1 root root 1899 2008-09-11 16:47 mail.crt -rw-r--r-- 1 root root 963 2008-09-11 16:47 mail.key Can those just be placed into the main.cf for Postfix? I see the ones already in Postfix have a .pem extension. My Verisign certificates do NOT have a .pem extension. mail:/etc/apache2/ssl# grep snake /etc/postfix/main.cf smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key Those above are generated when the machine had a different FQDN and is not conflicting with the current machines FQDN. Can I simply just use the SSL CA certificates I purchased from Verisign in Postfix with the information I provided above?
