From 9854dfcf9d9cb1cf380c62c16c59565f7d5798b4 Mon Sep 17 00:00:00 2001 From: mguessan Date: Thu, 18 Nov 2010 21:36:33 +0000 Subject: [PATCH] Doc: ssl setup doc update from kerstkonijn git-svn-id: http://svn.code.sf.net/p/davmail/code/trunk@1546 3d1905a2-6b24-0410-a738-b14d5a86fcbd --- src/site/xdoc/sslsetup.xml | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/src/site/xdoc/sslsetup.xml b/src/site/xdoc/sslsetup.xml index a11e69e7..47c88751 100644 --- a/src/site/xdoc/sslsetup.xml +++ b/src/site/xdoc/sslsetup.xml @@ -24,7 +24,14 @@ pkcs12 -validity 3650 -dname cn=davmailhostname.company.com,ou=davmail,o=sf,o=net -

Note to iPhone users: iOS does not support the default DSA algorithm, make sure you use an RSA key pair

+

Note to iPhone users: iOS does not support the default DSA algorithm, make sure you use an RSA key + pair +

+ +

If you have an official certificate in PEM form, convert it to PKCS12 with the following command:

+ openssl pkcs12 -export -in cert-davmail.pem -inkey privatekey-davmail.key -certfile + chain-davmail.pem -out davmail.p12 +

Then add this keystore to DavMail settings:

@@ -35,7 +42,7 @@ davmail.ssl.keystoreFile=davmail.p12 davmail.ssl.keystorePass=password]]>

If your already have your keystore in JKS format, just set keystoreType to JKS in DavMail settings. keystorePass is the password used to open the KeyStore, keyPass protects the private key - inside the KeyStore. + inside the KeyStore. With PKCS12, keyPass and keystorePass are often identical.

Restart DavMail, all DavMail listeners will switch to secure mode: POP3S/IMAPS/SMTPS/HTTPS/LDAPS. You will also need to enable SSL in client applications and manually accept the certificate as it's