Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Mail SNI is enabled, but server certificate is used

Discussion in 'E-mail Discussion' started by mike817, May 31, 2016.

Tags:
  1. mike817

    mike817 Member

    Joined:
    Aug 5, 2010
    Messages:
    15
    Likes Received:
    0
    Trophy Points:
    51
    I have mail SNI enabled for my domain, but when I enter the settings into a mail client, the server certificate is pulled instead of the domain. Is this correct? From the documentation, I thought SNI would use the cert installed for the domain.
     
    #1 mike817, May 31, 2016
  2. webhostuk

    webhostuk Well-Known Member

    Joined:
    Sep 11, 2013
    Messages:
    148
    Likes Received:
    15
    Trophy Points:
    18
    Location:
    UK
    cPanel Access Level:
    Website Owner
    Twitter:
    I feel its because the server is using the main Server shared IP that's the reason its pulling the server certificate and not the dedicated IP of your domain to send the emails.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 webhostuk, Jun 1, 2016
  3. Kevzon

    Kevzon Member

    Joined:
    Jun 1, 2016
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Africa
    cPanel Access Level:
    Root Administrator
    How did you install the certificate and what type of certificate do you have ? (do you have WHM?)
     
    #3 Kevzon, Jun 1, 2016
  4. mike817

    mike817 Member

    Joined:
    Aug 5, 2010
    Messages:
    15
    Likes Received:
    0
    Trophy Points:
    51
    After some experimenting, it looks like the certificate is correct only when just the main domain is used in the email settings. So domain.com gets the correct certificate, while imap.domain.com gets the server one. Is that the correct implementation?
     
    #4 mike817, Jun 1, 2016
  5. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    46,390
    Likes Received:
    2,046
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    We have an internal case open to ensure the host used for "Mail SNI" purposes is displayed and integrated with the "Set Up Mail Client" option under "Email Accounts" in cPanel. Thus, if you installed a SSL certificate for "domain.com", and "Mail SNI" is enabled, then "domain.com" will display under "Manual Settings" in the "Set Up Mail Client" option in cPanel and in the automatic configuration scripts. I'll update this thread with more information on this case as it becomes available. In the meantime, you can manually update the email client to use "domain.com" to ensure the correct certificate is utilized.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #5 cPanelMichael, Jun 6, 2016
  6. AusDataHost2

    AusDataHost2 Registered

    Joined:
    Jun 21, 2014
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Iv just had this issue and the problem is the lack of mail. subdomain setup in apache.

    If found if i remove the DNS entry for mail.<domain>, add the mail.<domain> sub domain via cpanel (and also install a lets encrypt cert for mail.<domain>) it works perfectly.

    Changing the incoming server would be easier but with existing setups its not always easy e.g. Apple Mail does not allow it to be changed once an account is setup.

    Bit manual but works for me for now.
     
    #6 AusDataHost2, Aug 29, 2016
  7. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    46,390
    Likes Received:
    2,046
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #7 cPanelMichael, Sep 1, 2016
(You must log in or sign up to post here.)
Loading...
Similar Threads - Mail enabled server
  1. bellwood

    MX routing for domains without MX records will not accept email

    bellwood, Mar 22, 2019 at 9:32 AM, in forum: E-mail Discussion
    Replies:
    4
    Views:
    54
    bellwood
    Mar 22, 2019 at 5:35 PM
  2. CharlesGLondon

    New Thread Block spam email addresses in WHM?

    CharlesGLondon, Mar 22, 2019 at 8:13 AM, in forum: E-mail Discussion
    Replies:
    1
    Views:
    34
    keat63
    Mar 22, 2019 at 9:15 AM
  3. sjackson_Bluehost

    What file contains Default Webmail client

    sjackson_Bluehost, Mar 21, 2019 at 3:41 PM, in forum: E-mail Discussion
    Replies:
    1
    Views:
    57
    cPanelLauren
    Mar 22, 2019 at 3:19 PM
  4. albatroz

    Partial backup didn't include email accounts

    albatroz, Mar 21, 2019 at 12:18 PM, in forum: Data Protection
    Replies:
    2
    Views:
    77
    cPanelLauren
    Mar 22, 2019 at 2:53 PM
  5. nosajix

    Read Status after Manual Move of Email Accounts

    nosajix, Mar 21, 2019 at 8:36 AM, in forum: E-mail Discussion
    Replies:
    1
    Views:
    90
    cPanelMichael
    Mar 22, 2019 at 4:32 PM

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice