The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Correct way to configure email programs (SSL + moving servers)

Discussion in 'E-mail Discussions' started by Arvy, Aug 17, 2015.

  1. Arvy

    Arvy Well-Known Member

    Joined:
    Oct 3, 2006
    Messages:
    92
    Likes Received:
    3
    Trophy Points:
    8
    Location:
    Brazil
    cPanel Access Level:
    Root Administrator
    Twitter:
    I have a question for a long time: what is the best way to configure the e-mail programs of my clients considering I can move them between my servers?

    Using the configuration shown in cPanel, would be set up with the server name, for example, server.mycompany-server1.com, but if I move the client across servers, they have to reconfigure all e-mail programs, for example, to server.mycompany-server2.com.

    Because of this, I'm using mail.myclient.com format, the MX entry, mail. + client domain. But this way, as I understand, will always cause problems with the server certificate if the client uses 465 SMTP, 995 POP3 or 993 IMAP ports, regardless if the certificate is verified or self-signed, because OutLook will not accept "mail.myclient.com" (OutLook) X "server.mycompany-server2.com" (certificate after connected)...

    So, what is the best way to set up OutLook that I can move clients between servers while not generate invalid certificate warnings in e-mail programs?

    Thanks!
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    652
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    Have you considered using the "Mail SNI" feature? Mail SNI configures the mail services to use the SSL certificate for your domain instead of the server's default certificate.

    Thank you.
     
  3. Arvy

    Arvy Well-Known Member

    Joined:
    Oct 3, 2006
    Messages:
    92
    Likes Received:
    3
    Trophy Points:
    8
    Location:
    Brazil
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello Michael,

    but, in this case, I need a SSL certificate for every client. I have more than 300. I'm looking for a way to use mail.myclient.com using a valid SSL certificate (not auto-signed) but for the server only (server.mycompany-server1.com). Is possible?

    Thunderbird shows an error once, and is possible accept the "error" (exception). But Outlook shows an "invalid certificate" message everytime clients open the program and send/receive a message using TCP 465/587/995...

    Thanks.
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    652
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    There's no other way around this issue unless you install a SSL certificate for each domain name and enable the "Mail SNI" feature. You will simply need to have your clients update their email client configuration details after migrating them to a server with a new hostname.

    Thank you.
     
Loading...

Share This Page