Knowledge Base

Incorrect SSL certificate is used for mail service when Premium Email by Kolab is installed

Symptoms

Plesk Premium Email extension by Kolab is used in Plesk.
Non-default SSL certificate is set to secure mail traffic at Plesk > Tools & Settings > SSL Certificates > Certificate for securing mail;
Email traffic still uses Plesk Default certificate: How to verify that SSL for IMAP/POP3/SMTP works and a proper SSL certificate is in use;
/etc/dovecot/private/dovecot.pem and /etc/dovecot/private/ssl-cert-and-key.pem files have different content:

# md5sum /etc/dovecot/private/ssl-cert-and-key.pem /etc/dovecot/private/dovecot.pem
232dd0e418d073758357452c825eafc1 /etc/dovecot/private/ssl-cert-and-key.pem
5641ddb15e79c0fda43bcd7a5d5dc307 /etc/dovecot/private/dovecot.pem

Cause

This is a Plesk bug with ID PPPM-7808 which is planned to be fixed in future product updates.

Resolution

for Kolab version 16.3.0 and earlier:

Connect to the server using SSH.
Overwrite /etc/dovecot/private/ssl-cert-and-key.pem with content from /etc/dovecot/private/dovecot.pem:

# cp -f /etc/dovecot/private/dovecot.pem /etc/dovecot/private/ssl-cert-and-key.pem

for Kolab version 16.3.3:

Connect to the server via SSH.
Restart guam service:

# service guam stop
# service guam start

Note: as a workaround for Kolab version 16.3.2 upgrade to version 16.3.3.

Related Posts

Setting Up and Configuring a Linux Mail Server

Advanced Techniques for Building an Email List

Next Level Ops Podcast: Working with Self-hosting Email with Christian Mollekopf

Knowledge Base

The error is shown in an attempt to reload mail-related services on Plesk server: /etc/init.d/courier-imapd: IMAP: not found

Unable to receive/send mail in Plesk: (!)DENIED ACCESS from IP 203.0.113.2, policy bank

Plesk mail notification is received: Could not secure domains – Missed domain names failed to pass validation: www.example.com

Unable to access mail: Warning: Inotify instance limit for user exceeded

Hosting Wiki