Dear Skunkworks, I have installed Zimbra Mail Server and keeps getting this message on Outlook and also on https; Any solution or guideline on how to resolve. Also be able to sync using smart phones. [image: Inline image 1] Regards, Edwin Ngige 0722 841853
The warning is self explanatory. Its normal for default installed certs not to be verified. One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them. Regards, @njukey
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux. On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
The warning is self explanatory. Its normal for default installed certs not to be verified.
One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them.
Regards, @njukey
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
Edwin, If you chose -> view certificate, you will find an option to add an exception, which means you are telling your browser that you trust the source even though the certificate is wrong, then you can go on with your life since installing your own certificate is too much to ask you to do ./Ok3ch On Fri, Jul 29, 2016 at 4:08 PM, Odhiambo Washington via skunkworks < skunkworks@lists.my.co.ke> wrote:
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux.
On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
The warning is self explanatory. Its normal for default installed certs not to be verified.
One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them.
Regards, @njukey
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
Hi Experts, I just need a way to stop my users when using a mail client like outlook or webmail to stop seeing this message. I have tried to add as an exception but it keeps coming. Running Zimbra 8 on centos 6.6 final. Please help. On Sat, Jul 30, 2016 at 6:52 AM, Okechukwu via skunkworks < skunkworks@lists.my.co.ke> wrote:
Edwin,
If you chose -> view certificate, you will find an option to add an exception, which means you are telling your browser that you trust the source even though the certificate is wrong, then you can go on with your life since installing your own certificate is too much to ask you to do
./Ok3ch
On Fri, Jul 29, 2016 at 4:08 PM, Odhiambo Washington via skunkworks < skunkworks@lists.my.co.ke> wrote:
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux.
On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
The warning is self explanatory. Its normal for default installed certs not to be verified.
One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them.
Regards, @njukey
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
Well, I'd say buy a third party SSL certificate from a Certificate Authority- Digicert, Thawte, Symantec, GoDaddy, Verisgin, Comodo- they have several options in terms of how many names, length of validity. If you have an internal CA you can generate a certificate for your Zimbra server and install the same for your users. On 30 July 2016 at 12:25, Edwin Ngige via skunkworks < skunkworks@lists.my.co.ke> wrote:
Hi Experts,
I just need a way to stop my users when using a mail client like outlook or webmail to stop seeing this message. I have tried to add as an exception but it keeps coming. Running Zimbra 8 on centos 6.6 final. Please help.
On Sat, Jul 30, 2016 at 6:52 AM, Okechukwu via skunkworks < skunkworks@lists.my.co.ke> wrote:
Edwin,
If you chose -> view certificate, you will find an option to add an exception, which means you are telling your browser that you trust the source even though the certificate is wrong, then you can go on with your life since installing your own certificate is too much to ask you to do
./Ok3ch
On Fri, Jul 29, 2016 at 4:08 PM, Odhiambo Washington via skunkworks < skunkworks@lists.my.co.ke> wrote:
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux.
On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
The warning is self explanatory. Its normal for default installed certs not to be verified.
One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them.
Regards, @njukey
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- ------------------------------------------------------------------ ---Freedom is the right of all sentient beings--- ------------------------------------------------------------------ Thanks and Regards, Kariuki James Wanjau, (+254) 0717-315-092 ke.linkedin.com/in/JamesWanjau
Edwin, Head to https://letsencrypt.org/getting-started/ and read and read and read:-) Set it up on your server *to replace* that self-signed certificate that came with Zimbra (I hope you can find where it is) Most important, you need to set the letsencrypt cerificates to autorenew - done via cron entries (read again!). On 30 July 2016 at 12:25, Edwin Ngige via skunkworks < skunkworks@lists.my.co.ke> wrote:
Hi Experts,
I just need a way to stop my users when using a mail client like outlook or webmail to stop seeing this message. I have tried to add as an exception but it keeps coming. Running Zimbra 8 on centos 6.6 final. Please help.
On Sat, Jul 30, 2016 at 6:52 AM, Okechukwu via skunkworks < skunkworks@lists.my.co.ke> wrote:
Edwin,
If you chose -> view certificate, you will find an option to add an exception, which means you are telling your browser that you trust the source even though the certificate is wrong, then you can go on with your life since installing your own certificate is too much to ask you to do
./Ok3ch
On Fri, Jul 29, 2016 at 4:08 PM, Odhiambo Washington via skunkworks < skunkworks@lists.my.co.ke> wrote:
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux.
On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
The warning is self explanatory. Its normal for default installed certs not to be verified.
One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them.
Regards, @njukey
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
Check the following sir Ngige: In layman terms this is what is most likely happening.... Make sure you match the name [principle name] used to generate certificate with what you are using in outlook. For example if you used *mail.ngige.com <http://mail.ngige.com>* to generate certificate, use same in outlook [pop/imap etc]. If you use a resolved dns IP or local address it will keep popping till Jesus returns to pick his believers. Kind Regards, Wilson./ On 30 July 2016 at 12:25, Edwin Ngige via skunkworks < skunkworks@lists.my.co.ke> wrote:
Hi Experts,
I just need a way to stop my users when using a mail client like outlook or webmail to stop seeing this message. I have tried to add as an exception but it keeps coming. Running Zimbra 8 on centos 6.6 final. Please help.
On Sat, Jul 30, 2016 at 6:52 AM, Okechukwu via skunkworks < skunkworks@lists.my.co.ke> wrote:
Edwin,
If you chose -> view certificate, you will find an option to add an exception, which means you are telling your browser that you trust the source even though the certificate is wrong, then you can go on with your life since installing your own certificate is too much to ask you to do
./Ok3ch
On Fri, Jul 29, 2016 at 4:08 PM, Odhiambo Washington via skunkworks < skunkworks@lists.my.co.ke> wrote:
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux.
On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
The warning is self explanatory. Its normal for default installed certs not to be verified.
One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them.
Regards, @njukey
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
As long as the certificate is self signed you will always get that message. Buy a cheap third-party certificate and install it. Some companies even block your emails if you don't have a certificate that is from a reputable authority. On Mon, Aug 1, 2016, 1:16 PM Thuo Wilson via skunkworks < skunkworks@lists.my.co.ke> wrote:
Check the following sir Ngige:
In layman terms this is what is most likely happening....
Make sure you match the name [principle name] used to generate certificate with what you are using in outlook. For example if you used *mail.ngige.com <http://mail.ngige.com>* to generate certificate, use same in outlook [pop/imap etc]. If you use a resolved dns IP or local address it will keep popping till Jesus returns to pick his believers.
Kind Regards, Wilson./
On 30 July 2016 at 12:25, Edwin Ngige via skunkworks < skunkworks@lists.my.co.ke> wrote:
Hi Experts,
I just need a way to stop my users when using a mail client like outlook or webmail to stop seeing this message. I have tried to add as an exception but it keeps coming. Running Zimbra 8 on centos 6.6 final. Please help.
On Sat, Jul 30, 2016 at 6:52 AM, Okechukwu via skunkworks < skunkworks@lists.my.co.ke> wrote:
Edwin,
If you chose -> view certificate, you will find an option to add an exception, which means you are telling your browser that you trust the source even though the certificate is wrong, then you can go on with your life since installing your own certificate is too much to ask you to do
./Ok3ch
On Fri, Jul 29, 2016 at 4:08 PM, Odhiambo Washington via skunkworks < skunkworks@lists.my.co.ke> wrote:
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux.
On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
The warning is self explanatory. Its normal for default installed certs not to be verified.
One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them.
Regards, @njukey
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
https://www.namecheap.com/ is quite affordable on certs.. On Tue, Aug 2, 2016 at 11:07 AM, Jose Muga via skunkworks < skunkworks@lists.my.co.ke> wrote:
As long as the certificate is self signed you will always get that message. Buy a cheap third-party certificate and install it. Some companies even block your emails if you don't have a certificate that is from a reputable authority.
On Mon, Aug 1, 2016, 1:16 PM Thuo Wilson via skunkworks < skunkworks@lists.my.co.ke> wrote:
Check the following sir Ngige:
In layman terms this is what is most likely happening....
Make sure you match the name [principle name] used to generate certificate with what you are using in outlook. For example if you used *mail.ngige.com <http://mail.ngige.com>* to generate certificate, use same in outlook [pop/imap etc]. If you use a resolved dns IP or local address it will keep popping till Jesus returns to pick his believers.
Kind Regards, Wilson./
On 30 July 2016 at 12:25, Edwin Ngige via skunkworks < skunkworks@lists.my.co.ke> wrote:
Hi Experts,
I just need a way to stop my users when using a mail client like outlook or webmail to stop seeing this message. I have tried to add as an exception but it keeps coming. Running Zimbra 8 on centos 6.6 final. Please help.
On Sat, Jul 30, 2016 at 6:52 AM, Okechukwu via skunkworks < skunkworks@lists.my.co.ke> wrote:
Edwin,
If you chose -> view certificate, you will find an option to add an exception, which means you are telling your browser that you trust the source even though the certificate is wrong, then you can go on with your life since installing your own certificate is too much to ask you to do
./Ok3ch
On Fri, Jul 29, 2016 at 4:08 PM, Odhiambo Washington via skunkworks < skunkworks@lists.my.co.ke> wrote:
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux.
On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
The warning is self explanatory. Its normal for default installed certs not to be verified.
One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them.
Regards, @njukey
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
His issue is "keep getting" not if privately signed ie keep popping up everytime you close and open outlook. Guess we all get it wrong at some point :). Kind Regards, Wilson./ On 2 August 2016 at 11:21, Dan Wanjohi <nadwanjohi@gmail.com> wrote:
https://www.namecheap.com/ is quite affordable on certs..
On Tue, Aug 2, 2016 at 11:07 AM, Jose Muga via skunkworks < skunkworks@lists.my.co.ke> wrote:
As long as the certificate is self signed you will always get that message. Buy a cheap third-party certificate and install it. Some companies even block your emails if you don't have a certificate that is from a reputable authority.
On Mon, Aug 1, 2016, 1:16 PM Thuo Wilson via skunkworks < skunkworks@lists.my.co.ke> wrote:
Check the following sir Ngige:
In layman terms this is what is most likely happening....
Make sure you match the name [principle name] used to generate certificate with what you are using in outlook. For example if you used *mail.ngige.com <http://mail.ngige.com>* to generate certificate, use same in outlook [pop/imap etc]. If you use a resolved dns IP or local address it will keep popping till Jesus returns to pick his believers.
Kind Regards, Wilson./
On 30 July 2016 at 12:25, Edwin Ngige via skunkworks < skunkworks@lists.my.co.ke> wrote:
Hi Experts,
I just need a way to stop my users when using a mail client like outlook or webmail to stop seeing this message. I have tried to add as an exception but it keeps coming. Running Zimbra 8 on centos 6.6 final. Please help.
On Sat, Jul 30, 2016 at 6:52 AM, Okechukwu via skunkworks < skunkworks@lists.my.co.ke> wrote:
Edwin,
If you chose -> view certificate, you will find an option to add an exception, which means you are telling your browser that you trust the source even though the certificate is wrong, then you can go on with your life since installing your own certificate is too much to ask you to do
./Ok3ch
On Fri, Jul 29, 2016 at 4:08 PM, Odhiambo Washington via skunkworks < skunkworks@lists.my.co.ke> wrote:
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux.
On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
> The warning is self explanatory. Its normal for default installed > certs not to be verified. > > One way around it is to generate your own valid SSL certificates > using free CA's like Let's Encrypt <https://letsencrypt.org> and > the configuring your Zimbra to use them. > > Regards, > @njukey > > _______________________________________________ > skunkworks mailing list > skunkworks@lists.my.co.ke > ------------ > List info, subscribe/unsubscribe > http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks > ------------ > > Skunkworks Rules > http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 > ------------ > Other services @ http://my.co.ke >
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
Wait! @Jose Muga, Is this same certificate used for both client <-->Server secure communication and server <--> Server communication? I need to read about certificates again, althought I think the two should be different certifcates! Client certs are supposed to be different from server certs and as such I do not see how a client certificate can be used to communicate with an external server. As a matter of fact clients only communicate with a 'local' server, no? On 2 August 2016 at 11:07, Jose Muga via skunkworks < skunkworks@lists.my.co.ke> wrote:
As long as the certificate is self signed you will always get that message. Buy a cheap third-party certificate and install it. Some companies even block your emails if you don't have a certificate that is from a reputable authority.
On Mon, Aug 1, 2016, 1:16 PM Thuo Wilson via skunkworks < skunkworks@lists.my.co.ke> wrote:
Check the following sir Ngige:
In layman terms this is what is most likely happening....
Make sure you match the name [principle name] used to generate certificate with what you are using in outlook. For example if you used *mail.ngige.com <http://mail.ngige.com>* to generate certificate, use same in outlook [pop/imap etc]. If you use a resolved dns IP or local address it will keep popping till Jesus returns to pick his believers.
Kind Regards, Wilson./
On 30 July 2016 at 12:25, Edwin Ngige via skunkworks < skunkworks@lists.my.co.ke> wrote:
Hi Experts,
I just need a way to stop my users when using a mail client like outlook or webmail to stop seeing this message. I have tried to add as an exception but it keeps coming. Running Zimbra 8 on centos 6.6 final. Please help.
On Sat, Jul 30, 2016 at 6:52 AM, Okechukwu via skunkworks < skunkworks@lists.my.co.ke> wrote:
Edwin,
If you chose -> view certificate, you will find an option to add an exception, which means you are telling your browser that you trust the source even though the certificate is wrong, then you can go on with your life since installing your own certificate is too much to ask you to do
./Ok3ch
On Fri, Jul 29, 2016 at 4:08 PM, Odhiambo Washington via skunkworks < skunkworks@lists.my.co.ke> wrote:
I suppose Edwin first needs to read a lot about self-signed certificates. After that he can perhaps consider Let's Encrypt, which also means a lot of reading. Though there are many nice howtos for Linux.
On 29 July 2016 at 15:37, David Njuki via skunkworks < skunkworks@lists.my.co.ke> wrote:
The warning is self explanatory. Its normal for default installed certs not to be verified.
One way around it is to generate your own valid SSL certificates using free CA's like Let's Encrypt <https://letsencrypt.org> and the configuring your Zimbra to use them.
Regards, @njukey
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254 7 3200 0004/+254 7 2274 3223 "Oh, the cruft."
participants (8)
-
Dan Wanjohi -
David Njuki -
Edwin Ngige -
James Wanjau -
Jose Muga -
Odhiambo Washington -
Okechukwu -
Thuo Wilson