On Mon, Apr 21, 2014 at 04:35:41PM -0500, John Griessen wrote: > For now, I just want to enable TLS with clear text passwords on > IMAP email accounts.
Postfix is not your IMAP server, that would be something like Dovecot. > reading http://www.postfix.org/TLS_README.html If you really meant IMAP, you need to read the Dovecot or similar documentation. > I did some config settings, and concatenated cacert public > certificates together first my server-cert, then intermediate > cacert, then root cacert, and point to it with: > > smtp_tls_cert_file = /etc/ssl/certs/tls-mail.cibolo.us.pem This is an SMTP *client* setting, for sending mai. You almost never client certs. You probably meant to set: # smtpd_tls_... not smtp_tls_... # smtpd_tls_cert_file = /etc/ssl/certs/tls-mail.cibolo.us.pem > Apr 21 14:31:15 mail postfix/smtpd[22960]: warning: No server > certs available. TLS won't be enabled See above. > smtp_tls_CAfile = /etc/ssl/certs/cacert.org.class3.crt Leave it empty. > smtp_tls_cert_file = /etc/ssl/certs/tls-mail.cibolo.us.pem > smtp_tls_key_file = /etc/ssl/private/mail.cibolo.us_privatekey.pem These empty too. > smtp_use_tls = yes Obsolete interface, instead: http://www.postfix.org/postconf.5.html#smtp_tls_security_level > smtpd_tls_loglevel = 2 The most sensible level is 1. > smtpd_tls_security_level = may You need a certificate and key. This enables TLS for SMTP mail, not IMAP. -- Viktor.
