Hello!

I have recently set up mailcow on my hetzner cloud instance and everything works just fine in relation to mailcow but I’m having issues when adding the ssl certificates for my other sites (non mailcow related). They are set up with the mailcow nginx container and reachable but the certificate is for mail.mydomain.com not for my other ones, hence the other sites being flagged as not secure by the browser. I’ve read through the documentation several times and I can’t seem to find the solution. I don’t know where to set them as seperate sites with separate certificates. Perhaps I’m just not able to read properly and I’m also fairly new to devOps tasks. So any help would be really appreciated, thanks in advance!!

I would strongly suggest to separate mailcow and those “non mailcow related” sites.
Use a nginxproxymanager.com Icon Nginx Proxy Manager

as reverse proxy in front of both mailcow and “other sites”.
Have Nginx Proxy Manager to get all needed certificates, (because only one ACME service can listen on port 80), disable ACME LE in mailcow and configure mailcow properly to work behind Nginx Proxy Manager:
docs.mailcow.email Icon Overview - mailcow: dockerized documentation
docs.mailcow.email Icon docs.mailcow.email
Overview - mailcow: dockerized documentation
None
docs.mailcow.email

And copy the SSL certificates over to mailcow each time NPM has renewed them (I do this with Ansible automation)
docs.mailcow.email Icon Advanced SSL - mailcow: dockerized documentation
docs.mailcow.email Icon docs.mailcow.email
Advanced SSL - mailcow: dockerized documentation
None
docs.mailcow.email

    Have something to say?

    Join the community by quickly registering to participate in this discussion. We'd like to see you joining our great moo-community!

    esackbauer

    Thank you for the advice! I’ll defintetly give that a try! But shouldn’t I be able to set up acme to receive certificates for mail.mydomain.de & mydomain.de / www.mydomain.de separately within the mailcow docker compose setup?

    esackbauer

    I managed to set it up as you suggested, thank you very much for your help!

    No one is typing