Hello,
I have created a certificate for 4 domains - including a mail.domain.com.
certbot certificates | grep -i domain
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Certificate Name: mail.domain.com**-0001**
Domains: mail.domain.com imap.domain.com mail.domain2.com
Certificate Path: /usr/local/etc/letsencrypt/live/mail.domain.com-0001/fullchain.pem
Private Key Path: /usr/local/etc/letsencrypt/live/mail.domain.com-0001/privkey.pem
I use the mail.domain.com in my email client.
In sendmail the following paths are set (.mc4):
define(`CERT_DIR', `/usr/local/etc/letsencrypt/live/mail.domain.com-0001')
define(`confCACERT_PATH', `CERT_DIR')
define(`confCACERT', `CERT_DIR/fullchain.pem')
define(`confSERVER_CERT', `CERT_DIR/cert.pem')
define(`confSERVER_KEY', `CERT_DIR/privkey.pem')
define(`confCLIENT_CERT', `CERT_DIR/cert.pem')
define(`confCLIENT_KEY', `CERT_DIR/privkey.pem')
Since that afternoon today, I get an error message in Outlook/Thunderbird that the certificate for mail.domain.com expired on 7/16/2022.
But
"show certificates" displays:
Certificate Name: mail.domain.com-0001
Serial Number: ...
Key Type: RSA
Domains: mail.domain.com imap.domain.com mail.domain2.com
Expiry Date: 2022-09-20 19:23:01+00:00 (VALID: 66 days)
Certificate Path: /usr/local/etc/letsencrypt/live/mail.domain.com-0001/fullchain.pem
Private Key Path: /usr/local/etc/letsencrypt/live/mail.domain.com-0001/privkey.pem
So my email client throws an error message a certificate called "mail.domain.com" which expired today although sendmail is working with a certificate named mail.domain.com**-0001**.
apparently something got mixed up with the certificates on the server.
What can I do to clean it up?
Thanks and kind regards
letsencrypttestit