Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 8697 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

TLS Certificate in MTA Mode

Gary K

Hi all,

   Does anyone have a decent walk-through explaining how to get a server cert onto an XG? I'm in MTA mode but using the appliance CA. I have a GoDaddy cert for my 2016 exchange server and I'm assuming that can be imported somehow, maybe. I see this message on the SMTP TLS config screen 'While in MTA Mode, it is recommended to use Server Certificate instead of CA Certificate"

Do I need to convert my GoDaddy cert to a specific format and if so, how? I've messed around with it before and didn't get anywhere.

 

Thanks

Gary



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to Gary K
    Solved !!!
     
    Only If needed
    Import the certificates to a Windows machine
    CA ROOT
    Intermediate CA
    And domain certificate with the KEY
    Export the certificate (check box the complete certificate  chain) from Windows with pfx format.
    With OpenSSL convert it to PEM.
     
    Open the PEM with text editor and separate the key to a new file .key leave the rest of the certificates intact or add at the end of the file the Intermediate CA and Root CA
     
    Your PEM certificate now contains all the certificate chain.
     
    Import the certificate in Sophos and use this for SMTP SSL.
     
     
     
    Et Voila !!
Children
No Data