Author Topic: Renewed SSL not loaded up for SNI  (Read 4666 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
Renewed SSL not loaded up for SNI
« on: November 04, 2020, 10:28:06 AM »
Hi,

Not sure if anybody else is experiencing this issue.

I am hosting multiple domains and using SNI with postfix and dovecot. When my SSL certificates gets renewed both dovecot and postfix still presents the old/expired certificate.

My current solutions:

Dovecot, simply restart the service.

Postfix I need to do the following:
cd /etc/postfix/
postmap -F hash:vmail_ssl.map
postfix reload

Hope this can help somebody with the same issue.

If anybody knows of a better or more automated way please share :)

Offline
*
Re: Renewed SSL not loaded up for SNI
« Reply #1 on: January 10, 2023, 05:35:50 PM »
Hi,

Have you (or anybody else) found a better solution than this?

It works every time but I dislike the manual updating of the file.


Offline
****
Re: Renewed SSL not loaded up for SNI
« Reply #2 on: January 22, 2023, 05:54:52 AM »
Using SNI here too with dovecot & postfix. My Postfix map seems to be updating just fine with SSL renewals, automagically.
Code: [Select]
-rw-r--r-- 1 root root 2893 Dec 11 11:05 /etc/postfix/vmail_ssl.mapI'll take a closer look at this other server when it renews in 1-2 weeks:
Code: [Select]
-rw-r--r-- 1 root root 12180 Nov 10 11:22 /etc/postfix/vmail_ssl.map