• Support

  • Problem with SSL on mail server

Jimmy
Instead of Autodetect, please select Account Details. You should avoid autodetect settings always.

    9 months later

    I could get it work with the following :

    • my mail server is : mail.domain.com PTR: mail.domain.com
    • users are register with domain : domain.com
    • I created a website mail.domain.com to automatically generated SSL certificate
    • once complited it generate : 

        1 key 
  1 certificate (not full chain)

    then I would go to https://whatsmychaincert.com to check my certificate,

    • I copy past website certificate and generate full chain with root cert

    • I get the generated valid cert and added to my postfix config

    • finally i test with openssl 😀 
       openssl s_client -connect mail.domain.com:465
 openssl s_client -connect mail.domain.com:993
 openssl s_client -starttls smtp -connect mail.domain.com:587

    and all test get me to the right point, and my email client works fine

    Update 😀

    let'sencrypt store date in /www/server/panel/vhost/letsencrypt/domain.com/fullchain.pem

    TL;DR

    just put this information on postfix configuration:

    it will be always generated automatically 1 month before expire date, thus postfix will always look for the right certificate.

    never use email system in aapanel its a nightmare and if you have a good traffic its not recommend to host mail on same server

    you can't find free plugins, panels to do so ...
    aapanel is evolving i guess

    8 months later

    Are these instructions current?
    I'm using Mail Server 4.5 and external clients like Gmail don't recognize SSL
    Thanks for your work

    I'm also facing the same problem. Gmail highlighting SSL issues.

    7 days later

    I add the TLS parameters manually, but the cert does not generate automatically

    a month later

    Any update on this? I'm having the same issue. When trying to use Gmail to send emails, it's failing.

    When I attempt to update the mail settings in Gmail, it's reporting a "TLS Negotiation failed, the certificate doesn't match the host., code: 0"

    I've attempted to do some debugging. When I issue this command in a Linux command prompt, it's showing me old certificate details:

    openssl s_client -starttls smtp -showcerts -connect domain.com:587

    I've even completely deleted the SSL certificate for the domain in aaPanel, but it doesn't seem to actually delete it.

    2 years later
    a month later
    a month later

    Jimmy lemme try to solve your issue,

    actually last week i also faced same issue but after some research i found solution. here's it you follow may be it'll useful for you.

    so first you to make a configure a mail server (i hope you know) then add that mail server domain as a website ( in my case i was using mail.mydomain.com and off proxy ) then go to website where it listed then add ssl using encrypt SSl and you'll get ssl key and certificate just copy anyone ( let's assume first copied ssl private key) and then go to mail server software then choose that exact domain that you've used for mail server domain.com (in my case i was using mail.mydomain.com for mail server) then click on add ssl and paste that copied details accordingly . and save it and now restart aaApanel server. now all done you can use email anywhere (smtp, imap, pop) without getting issue.

    Context- i followed this same steps and my issue got resolved, and i don't know, you understood or not. no worries you can contact us via telegram ill try to help .

    thanks & regards 💗

      8 months later
      21 days later
      Connect with us: 📨 Telegram 💬 Discord Email: support@aapanel.com