I would like to know how add/install Let's Encrypt SSL Certificate to dovecot, postfix, pureftpd software and for ISPconfig3 web panel.
Thank Till. I will check this. PS One more thing. While I was installing ISP panel I chose option to create ssl certificate. Does this certificate is something like global one - for dovecot, postfix, pureftpd? I am asking, because I have tests (from ssllabs) of my server and there are: 17. SSL Certificate - Self-Signed Certificate port 465/tcp over SSL 18. SSL Certificate - Improper Usage Vulnerability port 465/tcp over SSL 19. SSL Certificate - Signature Verification Failed Vulnerability port 465/tcp over SSL 21. SSL Certificate - Self-Signed Certificate port 21/tcp over SSL 22. SSL Certificate - Improper Usage Vulnerability port 21/tcp over SSL 23. SSL Certificate - Signature Verification Failed Vulnerability port 21/tcp over SSL 24. SSL Certificate - Self-Signed Certificate port 110/tcp over SSL 25. SSL Certificate - Improper Usage Vulnerability port 110/tcp over SSL 26. SSL Certificate - Signature Verification Failed Vulnerability port 110/tcp over SSL 27. SSL Certificate - Self-Signed Certificate port 143/tcp over SSL 28. SSL Certificate - Improper Usage Vulnerability port 143/tcp over SSL 29. SSL Certificate - Signature Verification Failed Vulnerability port 143/tcp over SSL 30. SSL Certificate - Self-Signed Certificate port 25/tcp over SSL 31. SSL Certificate - Improper Usage Vulnerability port 25/tcp over SSL 32. SSL Certificate - Signature Verification Failed Vulnerability port 25/tcp over SSL 33. SSL Certificate - Self-Signed Certificate port 995/tcp over SSL 34. SSL Certificate - Improper Usage Vulnerability port 995/tcp over SSL 35. SSL Certificate - Signature Verification Failed Vulnerability port 995/tcp over SSL 36. SSL Certificate - Self-Signed Certificate port 993/tcp over SSL 37. SSL Certificate - Improper Usage Vulnerability port 993/tcp over SSL 38. SSL Certificate - Signature Verification Failed Vulnerability port 993/tcp over SSL 39. SSL Certificate - Self-Signed Certificate port 587/tcp over SSL 40. SSL Certificate - Improper Usage Vulnerability port 587/tcp over SSL 41. SSL Certificate - Signature Verification Failed Vulnerability port 587/tcp over SSL and each of above require normal ssl cert not self-signed (exactly "SOLUTION: Please install a server certificate with correct usage." and in RESULTS part I have details of my self-signed certificate) and there is many different ports used by services I mentioned on the begin of this post.
No, by default only ssl certs for the websites are created with Let's Encrypt. You can create manually a letsencrypt certificate for ISPConfig interface, postfix, dovecot etc.... I have created a little howto for ISPC, postfix, dovecot using acme.sh as le client with DNS-01 challenge: https://www.howtoforge.com/communit...utomated-dns-01-challenge-for-ispc-3-1.74850/ Here's a howto using the certbot client and nginx server: https://www.howtoforge.com/community/threads/securing-your-server-with-lets-encrypt.75554/
Poliman, the one you created while installing or updating ISPC is a self-signed certificate by openssl. If you need a proper certificate (signed) by LE, you can either follow the link that till or sjau suggested above. Or you can get from it from other SSL provider/seller.
