Re: [courier-users] Configuring certificates ... - Sam Varshavchik - net.sourceforge.lists.courier-users

2 messages in net.sourceforge.lists.courier-usersRe: [courier-users] Configuring certi...

From	Sent On	Attachments
Matthias Wimmer	Apr 20, 2007 5:08 am
Sam Varshavchik	Apr 20, 2007 3:16 pm

	Permalink for this message Paste this link in email or IM:
	Permalink for this thread Paste this link in email or IM:
	Atom feed for this thread Paste this URL into your reader:

Subject:	Re: [courier-users] Configuring certificates ...	Actions...
From:	Sam Varshavchik (mrs...@courier-mta.com)
Date:	Apr 20, 2007 3:16:11 pm
List:	net.sourceforge.lists.courier-users

Matthias Wimmer writes:

Hi!

I have the basic setup of courier with a single RSA certificate per IP running for some time now, so basic TLS setup with Courier is no problem for me. But the following two questions remain:

Beside the current RSA certificate I want to add a DSA certificate, so that clients are able to do RSA key exchange as well as DSA-signed Diffie Hellman key exchanges based on their key exchange protocol preference. (Both certificates will have the same CN, that's no problem.) How do I add two certificates to the same IP address of courier?

Set both DHCERTFILE and CERTFILE.

If my certificate is not signed by a root CA, but an intermediate CA. How do I add the certificate chain? Is it just placed in the certificate pem file or do I have to configure this change separately?

Yes, just add it to the pem file. I do not remember if it must be before or after your certificate. I believe after.

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets
	Permalink to these results Paste this link in email or IM:
	Atom feed for tracking future search results Paste this URL into your reader: