Fixing Gmail issue: TLS Negotiation failed, the certificate doesn't match the host

Discussion in 'ISPConfig 3 Priority Support' started by miguelpinheiro, Apr 14, 2020.

Tags:
  1. miguelpinheiro

    miguelpinheiro Member

    Hi! I came across an issue sending email through Gmail using my ISPConfig Server. It seems Gmail recently checks the certificate that matches the mail server. You can check more details is the following image:

    [​IMG]

    Also I'm following the issue in this Google Community forum. As some people points out in the thread, it seems things get fixed adding a Letsencrypt certificate to SMTP servers. I have 2 mail servers in my server, each pointing to their own IPv4 address:
    mail.domain1.com => address 1
    mail.domain2.com => address 2

    Although I have in my server several domains using LetsEncrypt (i.e. doaminN.com and www.domainN.com) I can't figure out, how can I add a LetsEncrypt certificate to mail.domainN.com or smtp.domainN.com and if this is achievable using ISPConfig3.

    I appreciate any help on this. Best regards.

    Miguel
     
    miguelpinheiro, Apr 14, 2020
    #1
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    till, Apr 14, 2020
    #2
    Gwyneth Llewelyn likes this.
  3. Taleman

    Taleman Well-Known Member HowtoForge Supporter

    Taleman, Apr 14, 2020
    #3
  4. miguelpinheiro

    miguelpinheiro Member

    Thank you @till
    After running the script I got:
    Code:
    ./le4ispc.sh: line 28: certbot: command not found
    It seems I do not have certboot installed in my Debian Jessie. I tried to install using:
    Code:
    apt-get install certbot
    But I have some unmet dependencies.:(

    Code:
    Reading package lists... Done
Building dependency tree
Reading state information... Done
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you are using the unstable
distribution that some required packages have not yet been created
or been moved out of Incoming.
The following information may help to resolve the situation:

The following packages have unmet dependencies:
 certbot : Depends: python3-certbot (= 0.28.0-1~bpo9+1) but it is not going to be installed
E: Unable to correct problems, you have held broken packages.
    This is a prod server. I'm not confident enough to fix this. Can I have hire paid support?
    Regards.
     
    miguelpinheiro, Apr 14, 2020
    #4
  5. miguelpinheiro

    miguelpinheiro Member

    miguelpinheiro, Apr 14, 2020
    #5
  6. till

    till Super Moderator Staff Member ISPConfig Developer

    till, Apr 14, 2020
    #6

Share This Page