Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Mail Server SSL cert

Discussion in 'E-mail Discussions' started by Monto, Sep 26, 2017.

Tags:
  1. Monto

    Monto Member

    Joined:
    Jul 5, 2017
    Messages:
    7
    Likes Received:
    2
    Trophy Points:
    3
    Location:
    Australia
    cPanel Access Level:
    Root Administrator
    I am using autoSSL on my server, cpanel 66.

    On a domain which had an Autossl DV cert installed, I installed a purchased EV cert.

    However, it doesn't cover mail.domain.com, only domain.com and the EV is the only cert still active.

    I have found that my email works by using domain.com instead of mail.domain.com as the mailserver hostname in my email client.

    Is this good practice, or is there any reason not to, being as how all tutorials seem to show using a FQDN like mail.domain.com or server.domain.com?

    Or am I better off creating a subdomain called mail.domain.com so I can have a separate DV cert on that subdomain, and if so will autossl do that?

    Thanks for any advice.
     
  2. Nicholas-MAH

    Nicholas-MAH Member

    Joined:
    Sep 13, 2017
    Messages:
    19
    Likes Received:
    2
    Trophy Points:
    3
    Location:
    Brisbane, Queesland Australia
    cPanel Access Level:
    Root Administrator
    Twitter:
    @Monto an EV SSL is a much higher level of SSL than standard SSls as I am sure you know. The reason why you are now having to use domain.com instead of mail.domain.com is due to the fact that the EV SSL is unable to support sub-domains by default.

    In order to support mail.domain.com, you would require a Wild Card SSL, however for an EV Wild Card, no such SSL exists but a great workaround is by using an EV UCC SSL, more info can be found here.

    Also in regard to is this good practice or not, I have customers that prefer to use mail.domain.com however in my personal opinion I do not believe that it affects much at all.

    Regards,
    Nick.
     
  3. Monto

    Monto Member

    Joined:
    Jul 5, 2017
    Messages:
    7
    Likes Received:
    2
    Trophy Points:
    3
    Location:
    Australia
    cPanel Access Level:
    Root Administrator
    Hi Nick,

    Thanks for that. You last sentence is the most helpful - I am really just trying to make sure there are no gotchas using only the domain name as mail server name in an email client, I previously thought it always had to be a three part name, as in something.something.com rather than something.com

    But something.com is receiving and sending mail for me. If someone can show cause that this is a problem I can revert to using the server hostname instead.

    Thanks for your input.
     
  4. Nicholas-MAH

    Nicholas-MAH Member

    Joined:
    Sep 13, 2017
    Messages:
    19
    Likes Received:
    2
    Trophy Points:
    3
    Location:
    Brisbane, Queesland Australia
    cPanel Access Level:
    Root Administrator
    Twitter:
    No worries @Monto glad I was able to be of some assistance to you.
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,425
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    Yes, to confirm, it's acceptable to use "domain.tld" in your email client instead of "mail.domain.tld". Additionally, in cPanel version 66, you can now exclude subdomains such as "mail.domain.tld" from AutoSSL using the SSL/TLS Status option in cPanel:

    SSL TLS Status - Version 66 Documentation - cPanel Documentation

    Thank you.
     
Loading...

Share This Page