From 2b9156a42de653f5f2e6f536cbf8fcf4ed410056 Mon Sep 17 00:00:00 2001
From: mguessan SSL is not necessary when DavMail is used in workstation mode, as communication between clients and
- DavMail remain local. However, in server (shared) mode e.g. with a smartphone connecting to DavMail over
- the internet, you should make sure encryption is enabled.
- SSL is not necessary when DavMail is used in workstation mode, as communication between clients and
+ DavMail remain local. However, in server (shared) mode e.g. with a smartphone connecting to DavMail
+ over the internet, you should make sure encryption is enabled.
+ The simplest way to secure communication between mail/calendar clients and DavMail is to create a
- self signed certificate:
- The simplest way to secure communication between mail/calendar clients and DavMail is to create a
+ self signed certificate:
+ Then add this keystore to DavMail settings:
-
Restart DavMail, all DavMail listeners will switch to secure mode. You will also need to enable SSL in - client applications and manually accept the certificate as it's not signed by a trusted - Certification Authority. -
+ +Restart DavMail, all DavMail listeners will switch to secure mode. You will also need to enable SSL + in + client applications and manually accept the certificate as it's not signed by a trusted + Certification Authority. +
+ +In most cases, using https in OWA url is enough to secure communication between DavMail and Exchange. + However, with Exchange servers setup to require mutual authentication, you will have to register + client certificate in DavMail settings, either through PKCS11 (smartcard) or file certificate: +
+ +