[exim] Wildcard Certs

Top Page
Delete this message
Reply to this message
Author: Josh Berry
Date:  
To: Exim Users Mailing List
Subject: [exim] Wildcard Certs
Hi,

My company owns a wildcard certificate from trustssl.co.uk which allows
us to certify *.domain.com under the same certificate. It works fine on
a number of platforms with apache and I have got it working with courier
imap but am having problem with Exim.

When I try and use SMTP over SSL with the certificate I get the error:

TLS error on connection from (jberryxp) [212.159.2.3]
(SSL_CTX_use_certificate_chain_file
file=/share/admin/mailauth/STAR_plus.net.crt): error:02001002:system
library:fopen:No such file or directory

Exim works fine with a self signed certificate with the same length of
key etc. The certificate is available in the location as specified in
the error and is owned by the Exim user. The key file is also present
and owned by the same user.

The appropriate bit of my exim config, in case it is relevant, is:

hostlist auth_relay_hosts = *
tls_advertise_hosts = *
tls_certificate = /share/admin/mailauth/STAR_plus.net.crt
tls_privatekey = /share/admin/mailauth/STAR_plus.net.key

Thanks,
--
| Josh Berry                        Broadband Solutions for
| Internal Systems Engineer               Home & Business @
| PlusNet plc                                  www.plus.net

+ ----- Plusnet - The smarter way to Broadband! ----- +