> You should have at least an RSA certificate (2048-bit key, not more), and only
I do not recall seeing this on the PostFix web site that discusses TLS settings as I struggle to setup TLS with our existing wildcard certificate. Can you confirm a 4096-bit certificate will not work?
