$type=ticker$count=12$cols=4$cate=0

Zimbra Letsencrypt SSL Renew

0 0 Tuesday, April 28, 2020 Edit this post

Renew LetsEncrypt SSL certificate Log in as root and run the following command to renew. letsencrypt renew Or the following, depends o...



Renew LetsEncrypt SSL certificate

Log in as root and run the following command to renew.
letsencrypt renew
Or the following, depends on where your letsencrypt is installed.
letsencrypt certonly --standalone -d example.com

Copy new SSL certificate files to zimbra's letsencrypt folder and change the file ownership

cp /etc/letsencrypt/live/{YOUR_DOMAIN}/* /opt/zimbra/ssl/letsencrypt/
chown zimbra:zimbra /opt/zimbra/ssl/letsencrypt/*

Add X3 root certificate to the chain.pem

vi /opt/zimbra/ssl/letsencrypt/chain.pem

-----BEGIN CERTIFICATE-----
YOURCHAIN
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Copy private key

cp /opt/zimbra/ssl/letsencrypt/privkey.pem /opt/zimbra/ssl/zimbra/commercial/commercial.key

Log in as zimbra user and then stop proxy and mail service.

su zimbra
zmproxyctl stop
zmmailboxdctl stop

Verify the new SSL

/opt/zimbra/bin/zmcertmgr verifycrt comm privkey.pem cert.pem chain.pem
If it success, you should create an backup.
cp -a /opt/zimbra/ssl/zimbra /opt/zimbra/ssl/zimbra.$(date "+%Y%m%d")

Deploy new certificate

/opt/zimbra/bin/zmcertmgr deploycrt comm cert.pem chain.pem

Finally restart Zimbra

su zimbra
zmcontrol restart
Source : https://maideveloper.com/blog/how-to-renew-letsencrypt-ssl-certificate-for-zimbra https://gist.github.com/ugurerkan/6e9e3addf9a574ad0c57039164570e6f
https://wiki.zimbra.com/wiki/Installing_a_LetsEncrypt_SSL_Certificate

Labels:

SHARE:

Twitter Facebook Google Pinterest

COMMENTS

BLOGGER
DISQUS
Name

BIND,1,Bird,1,Bird Routing Daemon,1,FreeBSD,1,Linux,2,Mail,4,UNIX-like,1,Wireless,1,ZImbra,4,
ltr
item
Linux and FreeBSD Diary: Zimbra Letsencrypt SSL Renew
Zimbra Letsencrypt SSL Renew
https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjpmSdkuOqvNFRRIj9ydFYGIpX-7XXjSlHVI6ryLsYkCLLDcQiI9x1exh_xUFMmqQekuozxCBSSevxuiG6FApfjqfsfV36SQsm6Tx6AV6U8QwkFQv_Ed8hkEr2kOmpeUMgt3YYJUPxTFxtfYQ1HMCxtLKBfg5kN0zSmxOf22_UyJGxXKXQalEsP0oGp/s320/Zimbra-webclient-windows10-8.7-001.png
https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjpmSdkuOqvNFRRIj9ydFYGIpX-7XXjSlHVI6ryLsYkCLLDcQiI9x1exh_xUFMmqQekuozxCBSSevxuiG6FApfjqfsfV36SQsm6Tx6AV6U8QwkFQv_Ed8hkEr2kOmpeUMgt3YYJUPxTFxtfYQ1HMCxtLKBfg5kN0zSmxOf22_UyJGxXKXQalEsP0oGp/s72-c/Zimbra-webclient-windows10-8.7-001.png
Linux and FreeBSD Diary
http://dudi.channel-11.net/2020/04/zimbra-letsencrypt-ssl-renew.html
http://dudi.channel-11.net/
http://dudi.channel-11.net/
http://dudi.channel-11.net/2020/04/zimbra-letsencrypt-ssl-renew.html
true
1562377050106029204
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share to a social network STEP 2: Click the link on your social network Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy Table of Content