I have some domains on a virtualmin installation and am using letsencrypt to https// all of them. Now i want the different Domains to use ssl Mailconnection. If i select a domain, and tell it to copy the cert to dovecot / postfix, the other users will get a ssl cert warning, because the domainname don’t match the cert’s domainname. Do i have to create a multidomaincert, and extend this with each domain, i will have there? What is the best practice to do this?
Thanks and best
As far as i know - if you want to use SSL for mail - you need your own IP for every site - and you than can choose to copy the cert over for those sites with an independent IP
Were you looking for the best practice, or the worst practice?
The best practice is for them to connect for mail to the server’s own name. So if the user’s own domain is example.com, and the server’s fqdn is here.example.net, they should be connecting for email to here.example.net.
The worst practice is for them to connect to example.com and see certificate errors, or to require a separate IP address just for email.
The reason why we want to connect to a specific domain for http or https access is because there’s a different website on each domain. But this is not true for email. With email, you always specify an email address or a login name, so there is no need to connect to a different name.
Thank you guys, really. I was confused, because i didn’t realize, that i would need a different IP for each domain.
Well, i will use server.example.com as a domain for accessing the maqil server, not vserver1.com or vserver2.com
Thanks again.