The Astaro Self-Signed Cert is giving me grief with my BlackBerry users going through the SMTP Proxy. I need to find out how to install a purchased SSL cert for the SMTP proxy service.
The SMTP log shows me:
exim[9635]: 2010-03-23 16:20:23 TLS error on connection from bda-67-223-79-89.bise.na.blackberry.com (bda951.bisx.prod.on.blackberry) [67.223.79.89]:56580 (SSL_accept): error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate unknown
I'm pretty sure it's the self-signed cert at this point. I pushed port 25 through to my Mail Server in the DMZ, got the same type of error and read a KBA that "The BlackBerry Internet Service (BIS) servers currently do not support making SMTP connections to mail servers using self-signed certificates, or certificates generated by the same application that later provides it as verification of their security."
I purchased a SSL cert, installed it on my mail server and the Blackberry's could then send. When I put the Astaro SMTP Proxy back into the mix, the error returned.
I need to find out how to install a purchased SSL cert for the SMTP proxy service.
I've found Mail Security/SMTP/Advanced/TLS Settings/TLS Certificate which gives me a list of all my users, but I'm at a loss as to how to pull a CSR from the Astaro and install the resulting certificate to get it on that list.
I'm running 7.504 on an ASG320, and my mail server is Alt-N MDaemon 11 with BIS integration turned on.
Thanks for any help.
Brian
This thread was automatically locked due to age.
