This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Domain Wildcard Cert for SMTP, SSL VPN & Red

Hi All

We are having issues with CA Signed SSL Certs.

We are having PCI Vulnerability scans and failing on SSL Certs not being trusted. It Appears Astaro is no passing the Intermediate or Root Certs.

I've installed a domain wide SSL successfully.

CA CERTS only work for WAF
I create a virtual/physical server rule in WAF
Used an online SSL Cert checker and the check is good.

Everything else fails with not trusted.

Port 25,465,3400,32400 & 1024

We need all of these services running, We also need to pass PCI.

Any Suggestions ?

Many Thanks

This thread was automatically locked due to age.

0 BAlfson over 11 years ago

Hi Chris,

It's difficult to see what your issue is without seeing the actual failure message and the cert, so you may want to get Sophos Support involved. It may suffice to tell your PCI tester that you checked your cert with a different service and found no such problem.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 ChrisTwigg over 11 years ago

Hi Bob

Thanks for taking the time to reply.

The issue is, we are unable to assign a public cert to any Sophos external facing services. I.e Red box port 32400, SMTPs proxy 465 for starters.

There is no option on any of the services to use the installed cert.

Thanks

Chris
Cancel
Vote Up 0 Vote Down

Cancel