• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

SSL cert for webmail

B

bigtank

Guest
Hi there

I've imported a ssl certificate via plesk -> server -> certificates

It works well.


Now I tried to set a other certificate for webmail. I made a special configuration.
So every webrequest for webmail.* refers to a fix dns name https://webmail.myserver.mydomain.com.

I changed /etc/httpd/conf/httpd.pem with the new certificate because /etc/httpd/conf.d/zz010_psa_httpd.conf
includes this inside the virtual hosts for 443.

Now when I connect http://webmail.myserver.mydomain.com I still get the certificate which I imported
via plesk for plesk administration but not the one I changed in /etc/httpd/conf/httpd.pem ???

...
...
# SSL host
<IfModule mod_ssl.c>

<VirtualHost \

1.2.3.4:443 \
>
DocumentRoot /usr/share/psa-horde/
Alias /horde/ /usr/share/psa-horde/
Alias /imp/ /usr/share/psa-horde/imp/
ServerName webmail
ServerAlias webmail.*
UseCanonicalName Off
SSLEngine on
SSLVerifyClient none
SSLCertificateFile /etc/httpd/conf/httpd.pem
<Directory /usr/share/psa-horde>
<IfModule sapi_apache2.c>
php_admin_flag engine on
php_admin_flag magic_quotes_gpc off
php_admin_flag safe_mode off
php_admin_value open_basedir "/usr/share/psa-horde:/etc/psa-horde:/etc/psa:/tmp:/var/tmp:/var/log/psa-horde:/usr/share/doc"
php_admin_value include_path "/usr/share/psa-horde:/usr/share/psa-horde/pear:."
</IfModule>
<IfModule mod_php5.c>
php_admin_flag engine on
php_admin_flag magic_quotes_gpc off
php_admin_flag safe_mode off
php_admin_value open_basedir "/usr/share/psa-horde:/etc/psa-horde:/etc/psa:/tmp:/var/tmp:/var/log/psa-horde:/usr/share/doc"
php_admin_value include_path "/usr/share/psa-horde:/usr/share/psa-horde/pear:."
</IfModule>
SSLRequireSSL
Order allow,deny
Allow from all
</Directory>
</VirtualHost>


</IfModule>
...
...
Click to expand...

Does somebody know why that is?


Thanx for help

bigtank :)
 
Hi

I made it different. I also use one IP for everything within plesk.

# cat /etc/httpd/conf.d/webmail.conf
<Directory /usr/share/psa-horde>

RewriteEngine on
RewriteCond %{SERVER_PORT} !^443$
RewriteRule (.*) https://webmail.mydomain.com/$1 [R=301,L]

</Directory>
#
Click to expand...

So every webmail.domain.tld will be rewrited in "https://webmail.mydomain.com/"
and secure in one config file.


My problem is only how to setup a certificate for the "https://webmail.mydomain.com/".
I have the cert but I don't where to configure it...???

Bye
 
You must log in or register to reply here.

Similar threads

Bitpalast
Question How to remove SSL renewal attempts for good?
Replies
8
Views
2K
Bitpalast
Bitpalast
B
Question How is the server.conf file generated?
Replies
6
Views
911
Raul A.
R
B
Issue NGINX Issue
Replies
1
Views
2K
Martin Dias
Martin Dias
flederwiesel
Question `SSLVerifyClient require` -> AH10158: cannot perform post-handshake authentication
Replies
0
Views
733
flederwiesel
flederwiesel
M
Issue hosting update is failed: vhostmng-structure failed: Cannot create directory /httpdocs/Master/Production/current/public: No such file or directory
Replies
3
Views
1K
Kaspar@Plesk
Kaspar@Plesk
Back
Top