(1 votes, average: 5.00 out of 5)
Many organizations, including businesses, government agencies, & educational institutions, use Zimbra as it is an affordable and feature-rich alternative to other email and collaboration platforms. Securing it with an SSL certificate is given for such a platform. But do you know how to install SSL on Zimbra? If not, read on to know all about it. We have discussed the two ways in which you can install SSL on the platform.
But before you start installing, you must buy SSL certificate first. Also, before buying SSL, there is another step to do – CSR generation. Let’s do that first.
One of the easiest ways of generating CSR is using our efficient CSR generator tool. You need no prior technical knowledge to do this, all you must do is fill in all the required fields as prompted, and the tool will generate a CSR that you can use while buying the SSL certificate from your Certificate Authority.
Wait! You cannot start with the installation process just yet. There is one more stop. After generating the CSR, you have to copy-paste the content of the code.
—–BEGIN CERTIFICATE REQUEST—– and —–END CERTIFICATE REQUEST—–
You can now go ahead with the installation process.
As we already said, there are two ways of installing the SSL on Zimbra. They are
Let’s get started with the Zimbra command line interface first.
SSL certificate installation on Zimbra via the command line can be done by following these steps:
If your Zimbra version is older than 8.7, you can sign in using the remote access method, and If your Zimbra version is 8.7 or newer, log in as a Zimbra user.
After you are signed in, you can switch between the root and Zimbra user using the following commands
To switch from root to Zimbra user, enter the following command:
su – zimbra
To switch from the Zimbra user to the root, enter the following command:
Note: Remember to use caution when switching between user accounts, as this can have significant impacts on the security & stability of your server.
To begin installing your SSL certificate, you need to locate & access the appropriate tool or panel within Zimbra. You can do that by looking for the zmcertmrg tool. After finding the tool, you must type the following command:
Upload your certificate file:
Upload your CA bundle file:
To ensure that your SSL certificate is correctly installed & deployed on the Zimbra server, use the following command to verify the SSL Certificate deployment.
/etc/zimbra/bin/zmcertmgr verifycrt comm /etc/zimbra/ssl/zimbra/commercial/commercial.key /etc/example_com.crt /etc/example_com.ca-bundle
The next step is to deploy your SSL certificate & CA bundle files. For that, run the following command:
/etc/zimbra/bin/zmcertmgr deploycrt comm /etc/example_com.crt /etc/example_com.ca-bundle
If you want to double-check the information on the certificate, type the following command:
Note: If you didn’t create the CSR on Zimbra, you must name your private key file commercial.key and upload it into the following directory “/etc/zimbra/ssl/zimbra/commercial”.
You can run the following command if you want to switch to the Zimbra user:
If you want to switch back to the root user, type the following:
After completing these steps, your SSL certificate should be successfully installed and deployed on your Zimbra server.
SSL certificate installation on Zimbra via the Admin Console can be done by following these steps:
“Your certificate was installed successfully. You must restart your ZCS server to apply the changes.”
For switching to Zimbra user to root, type this command:
Use this command to restart Zimbra Server
Run this command to switch back to the root.
After you see the server has restarted, checking the status of the installed SSL is not difficult. All you must do is navigate to the Configuration > Certificates section. Click on the Gear icon. You will find it in the upper right corner. Select View Certificate, it will show you the SSL certificate status.
Finally, your SSL Certificate is Installed on Zimbra Server.