Courier IMAP


Preparing for the installation

To install your Digital Server certificate on a Postfix server, you will need two files. First, you will need the private key that was created when you made your CSR. Second, you will need the .cer file from the ZIP file that was emailed to you by SecureTrust™ (this is your actual certificate).

Your private key and certificate need to be in the same file for Courier IMAP to work with them. Create a new text file which contains your private key above your certificate. The easiest way to do this is to open your certificate in a text editor (the .cer file from the email), copy the entire certificate and paste it into a separate file. Then, open your private key (it was created when you made your CSR) in a text editor and paste it in its entirety right after the certificate. When you're creating your file, be sure that there are no line feeds after the certificate.

When you are finished, your new file should look like this:

-----BEGIN CERTIFICATE----- 
***** Encrypted certificate data 
-----END CERTIFICATE----- 
-----BEGIN RSA PRIVATE KEY----- 
***** Encrypted private key data 
-----END RSA PRIVATE KEY-----

Save this new file as securetrustcert.pem into a safe directory where you store certificates and keys.

Configure Courier IMAP's IMAP-SSL Connector

Open the imapd-ssl file in a text editor and adjust or add the following two lines:

TLS_CERTFILE=/path/securetrustcert.pem <- File you created
TLS_PROTOCOL=SSL3

Configure Courier IMAP's POP3-SSL Connector

Open the pop3d-ssl file in a text editor and adjust or add the following two lines:

TLS_CERTFILE=/path/securetrustcert.pem <- File you created
TLS_PROTOCOL=SSL3 

Completing the installation

Set your file permissions on your securetrustcert.pem file so that it is readable by the root user only. Restart the Courier IMAP pop3d-ssl and imapd-ssl connectors and your installation will be complete.