cartrek Hi all, new to the forum and needing some help. I have looked all over the documentation and the forums, I cannot find anything documented about loading custom root CA certificates. Is this possible? I have the LDAP certificate and the web cert working as I found documented.
esackbauer https://docs.mailcow.email/post_installation/firststeps-ssl/#how-to-use-your-own-certificate You can use your own certificates. Certificate files must have complete chain with root in it. Does this help?
cartrek Sorry, I should have been more specific, I believe that page is just about making the webpage HTTPS compliant (which I have done). I need to include our keycloak certificate along with our root and intermediate certificate in a trust store so that when we connect to the different services it trusts the CA information.
ETNyx Make them trusted by standard linux way, copy them to /usr/local/share/ca-certificates than update-ca-certificates and you are done. Also you could get your CA certs cross sign by widely trusted root, then your end certs will be trusted by default,…