How to vertify a certificate for postfix and courier


#1

Hello anyone

I’m using the letsencrypt script for my plesk webserver works fine, but i want to create a cert for my mailserver (hosted on the same machine like plesk webserver). But my idea is to use the manual command. But i cant vertify the subdomain because the randome generated file is not accessible.

Here is my what I have done:

./letsencrypt-auto certonly -a manual -d mail2.mydomain.de
–server https://*****..letsencrypt.org/directory --agree-dev-preview

Message Box: “Are you Ok with your being logged?” -> Yes

Error:

Unable to reach x
x http://mail2.myrootdomain.de/.well-known/acme-challenge/DTU9teY8

IMPORTANT NOTES:

  • The following ‘connection’ errors were reported by the server:

    Domains: mail2.myrootdomain.de
    Error: The server could not connect to the client for DV

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A record(s) for that domain
    contain(s) the right IP address. Additionally, please check that
    your computer has a publicly routable IP address and that no
    firewalls are preventing the server from communicating with the
    client.

Any idea how to vertify my mail2. Subdomain, its a A-Record.

Best Regards,

Marco


#2

If I remember correctly, manual verification requires that nothing is running on port 443. Have you considered creating a webhost for your mail2 subdomain, letting LE verify it like it were, and then use that same certificate for your mailserver?