iPhone 'expired cert' message


#1

I have LAMP Dovecot/Postfix/Apache server, installed LE a while back for Dovecot and Postfix, and, have renewed it about 4 times since, no issues

the hostname’s server was expiring today, 22nd, was renewed on 15th

just got an iPhone user saying got a message ‘cert expired’

if I go https://hostname, padlock shows me latest cert, valid from 15th

BUT, iPhone user seems getting the previous cert…?

setup is like:

cat /etc/dovecot/dovecot.conf | grep ssl

ssl = required
verbose_ssl = no
ssl_cert = </etc/letsencrypt/live/fqd.server/fullchain.pem
ssl_key = </etc/letsencrypt/live/fqd.server/privkey.pem

cat /etc/postfix/main.cf | grep tls

smtpd_tls_security_level = may
smtpd_tls_loglevel = 1
smtpd_tls_key_file = /etc/letsencrypt/live/fqd.server/privkey.pem
smtpd_tls_cert_file = /etc/letsencrypt/live/fqd.server/fullchain.pem

is anything wrong/incorrect in my setup ?
how to force iPhone to re load cert ?
what else…?

hmmm…is there a need to reload Dovecot ? Postfix ? after renewing certs ?

thanks for any pointers,

Voytek


#2

ooops, sorry…I think it just needed to reload Dovecot after renewing cert… sorry, panicked…


#3

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.