1,234
edits
Changes
→Dovecot + SSL
The process is identical to what you've done for the vm2 certificate. In fact if your IMAP and SMTP servers are on the same machine - you can share the certificate between them. In our case they're not on the same machine.
Now we need to configure Dovecot to use this for encrypted connections and not allow any kind of plain text connections. Edit 10-auth.conf and 10-ssl.conf to change the following settings:
* ssl = required
* ssl_cert = <path_to_your_crt_file
* ssl_key = <path_to_your_key_file
* disable_plaintext_auth = yes
Your key/certificate don't have a .pem extension but they are PEM-encoded files. You can confirm that using the '''file''' command. If you're interested - here's some documentation about [http://wiki2.dovecot.org/SSL/DovecotConfiguration Dovecot SSL configuration].
