Letsencrypt certificates with postfix/dovecot


http://letsencrypt.org is a great service offering free ssl certs.  Here’s how I got postfix and dovecot to recognize letsencrypt certs on a Debian system:

add the following lines to /etc/postfix/main.cf:

smtpd_tls_cert_file=/etc/letsencrypt/live/DOMAIN.COM/cert.pem
smtpd_tls_key_file=/etc/letsencrypt/live/DOMAIN.COM/privkey.pem
smtp_tls_cert_file=/etc/letsencrypt/live/DOMAIN.COM/cert.pem
smtp_tls_key_file=/etc/letsencrypt/live/DOMAIN.COM/privkey.pem
smtp_tls_CAfile = /etc/letsencrypt/live/DOMAIN.COM/chain.pem
smtpd_tls_CAfile = /etc/letsencrypt/live/DOMAIN.COM/chain.pem

and the following lines to /etc/dovecot/conf.d/10-ssl.conf:

ssl_cert = </etc/letsencrypt/live/boxx.ca/fullchain.pem
ssl_key = </etc/letsencrypt/live/boxx.ca/privkey.pem

 

Leave a comment

Your email address will not be published. Required fields are marked *