Add other subdomain names for mail pop3 etc to certificate

[ictabc]

I use the domain certificates for users also for dovecot, I used wildcard domains for that. So I would like to add the following subdomains to the certificate.

imap.domain.com pop3.domain.com pop.domain.com smtp.domain.com mail.domain.com

Is it possible to add these to the ssl request form as an default option you can select?

Dovecot SSL Config: http://help.directadmin.com/item.php?id=388

For Exim SNI should work haven't tested this yet. There are forum posts. Exim SSL Config: http://help.directadmin.com/item.php?id=389 http://www.exim.org/exim-html-current/doc/html/spec_html/ch-encrypted_smtp_connections_using_tlsssl.html http://forum.directadmin.com/showthread.php?t=50059&page=7&p=263954#post263954

I created an simple script to configure this, maybe you can add something similar to this plugin to add these configurations to Dovecot.

[Wouter0100]

Unfortunantly this plugin currently only supports SNI (because we don't need to do anything for this to work), not IP related stuff.

[ictabc]

These links are from before dovecot and exim worked with SNI. It is no possible to have dovecot and exim work with SNI certificates. So it is possible to have customers use there own domain to connect to the mail server. With there own certificates, before letsencrypt I used *.domain.com but letsencrypt doesn't support that yet. So that is the reason to I wanted to add these default subdomains to the certificate requests. The only thing I don't know is if it's possible without the subdomain being accessible as a webpage.

[barryvdh]

What if you those domains as a subdomain or domain alias? Wouldn't they get included + checked correctly?

[Wouter0100]

Hmm, that's also true. These A-records aren't subdomains, because of that the HTTP challenge shouldn't work here.