SSL client CA certificate

lejmr / iredmail-docker

iRedmail docker container

https://hub.docker.com/repository/docker/lejmr/iredmail

133 stars 60 forks source link

SSL client CA certificate #44

Open prosadoc opened 6 years ago

prosadoc commented 6 years ago

How can I pass the CA certificate to the container?

I have a certificate error in mobile phones

Oct 29 09:48:46 mail dovecot: imap-login: Error: SSL: Stacked error: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46 Oct 29 09:48:46 mail dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=154.48.131.200, lip=172.30.0.2, TLS handshaking: SSL_accept() failed: Unknown error, session=<4BEcI1p5aKmaMIPI>

InfiniteLukeOne commented 6 years ago

you can either push it in manually:

docker cp -L /path/to/fullchain.pem iredmail:/etc/ssl/certs/iRedMail.crt
docker cp -L /path/to/privkey.pem iredmail:/etc/ssl/private/iRedMail.key

or map it at creation time:

docker run (...)
           -v /path/to/privkey.pem:/etc/ssl/private/iRedMail.key:ro \
           -v /path/to/fullchain.pem:/etc/ssl/certs/iRedMail.crt:ro \
           (...)

prosadoc commented 6 years ago

I also need the other file CA Certificate

lejmr commented 4 years ago

Thanks for the feedback.. will update README.. but mounting is the best approach.