Forums & Blog

A SmarterTools-sponsored community.
Welcome to Forums & Blog Sign in | Join | Help
in Search
Home Blog Forums Photos
Forums & Blog » Product Discussions » SmarterMail » Webmail & IMAP / SMTP SSL

Webmail & IMAP / SMTP SSL

Last post 01-15-2010 8:46 AM by Blueskimonkey. 6 replies.
Page 1 of 1 (7 items)
Sort Posts: Previous Next

  • 01-14-2010 4:02 PM

    Webmail & IMAP / SMTP SSL

    Reply Contact

    Hi, 

    I am looking at securing my webmail address with an SSL Certificate and understand that I need to create a new site in IIS i.e. 

    webmail.domainname.com and install the certificate on their to enable https:// this part is fine, however i also want to enable SSL on IMAP / POP3 / SMTP and the instructions say to select the previously installed certificate does this mean that clients would also need to enter for the incoming and outgoing servers webmail.domainname.com ? and if so how can I enable SSL on the default connection settings which I use which is mail.domainname.com?

    Thanks Aaron

     

  • 01-15-2010 7:09 AM In reply to

    Re: Webmail & IMAP / SMTP SSL

    Reply Contact

    I actually have bought 2 certificates from servertastic (cheap at $10 per year). One for webmail.domain.com and one for mail.domain.com.

    I use the webmail certificate for the website and and mail certificate for smartermail smtp/pop etc. That way the two are seggregated

     

  • 01-15-2010 7:19 AM In reply to

    Re: Webmail & IMAP / SMTP SSL

    Reply Contact

    Thanks for the reply servertastic is also my preferred supplier :)

    Did you install a second website in IIS named mail.domain.com and then used that same certificate in Smartermail admin to add ssl to IMAP etc ? as the instructions I have read say to select a previously installed certificate.

    Also can normal non SSL Connections POP/SMTP/IMAP still run on that mail.domain.com IP Address?  and if they choose to use SSL Just check the option in outlook settings.

    Just want to make sure I get this right before making the change and to try not to break anyones setup

    Thanks Aaron

  • 01-15-2010 7:29 AM In reply to

    Re: Webmail & IMAP / SMTP SSL

    Reply Contact

    I installed one website with IIS and forced it to use SSL only as well as secured it using webmail.domain.com .

    I also followed the directions to install the mail.domain.com certificate and in the SM configuration I setup SSL rules for both TLS and SSL.

     

    SSL SMTP/POP/IMAP uses ports 465,995,993 and you point the rule to your .cer file

    TLS uses standard ports 25,110 and 143 for SMTP/POP/IMAP.

    In both cases you point them both to your .cer file you get back from servertastic.

    This should not impact your current imap/smtp and pop users since they would have to enable TLS or SSL in their client ot use that feature.

     

    In regards to webmail, I do ONLY let my users use the secured version of the webmail. All http requests are redirected to https.

  • 01-15-2010 7:53 AM In reply to

    Re: Webmail & IMAP / SMTP SSL

    Reply Contact

    Thanks for the quick reply so I assume you setup an IIS site called mail.domainname.com created the cert and then stored the cer file to use in smartermail configuration later on.

    Currently with my setup I have webmail.domain.com and mail.domain.com on the same IP Address for IMAP/POP/Webmail etc I also have every single domain on the system setup with a webmail DNS Record pointing to the same IP which IIS Listens on.

    So if I am right in thinking I need to the following:

    1) Set the current IIS Site on the existing IP Address to answer to the host header mail.domainname.com + *  & Install Cert in IIS

    2) Create a new IIS Site called webmail.domainname.com with a new IP & Install cert in IIS

    3) Configure Smartermail to use the cer for IMAP / POP3 / SMTP from above

    I guess then customers who use webmail.theirdomain.com will go to the site in step2 and if they choose to use https there they would get a warning about invalid SSL Cert for domain in use.

    It's all getting kind of confusing, just ordered by certs from servertastic though :)

     

  • 01-15-2010 8:10 AM In reply to

    Re: Webmail & IMAP / SMTP SSL

    Reply Contact

    Ok, so here's my setup:

    For the main server I have:

    mail.domain.com  ip is 192.168.1.50

    webmail.domain.com  ip is 192.168.1.50

    For the domains I have:

    mail.customerdomain.com ip is 192.168.1.50

    The current iis in production site is setup for webmail.domain.com and I setup a second iis site (to produce the mail.domain.com certificate) just for the smartermail cert generation. To allow users to go to webmail.customerdomain.com but prevent the ssl warning, just make sure all hits to login are redirected to https:///webmail.domain.com  would that work for you?

  • 01-15-2010 8:46 AM In reply to

    Re: Webmail & IMAP / SMTP SSL

    Reply Contact

    Thanks for the explanation its making more sense I like the fact that you auto redirect users to the correct SSL Site, with my setup yet again it gets a little complex as I have resellers who give their customers the webmail address to their main business domain and would want to hide the fact that they are a reseller.

    I suspect what I need to do is follow your steps above, then setup seperate IIS sites for each reseller and just limit webmail addresses in the future i.e.

    webmail.myhostingbusiness.com

    webmail.resellerbusiness1.com

    webmail.resellerbusiness2.com and so on

    and stop setting up webmail.customerdomains.com in the future.

    Thanks again for the help

     
Page 1 of 1 (7 items)
Copyright © 2002-2010 SmarterTools Inc. All Rights Reserved.