Zimbra SSL Installation

  1. Once you receive the .zip containing the certificate files, extract the “certs” folder somewhere on your server. We will be combining some the files you received in to a PEM format. To create the pem file, you can reference our PEM instructions or follow the next steps of these instructions.

  2. Take your server certificate (your_domain_name.crt) and copy it to a file called commercial.crt in the following directory:/opt/zimbra/ssl/zimbra/commercial/

  3. With a text editor (such as wordpad or notepad), copy and paste the entire body of each of the following certificates into one text file in the following order:

    1. The First Intermediate Certificate - E-Tugra_Root.crt
    2. The Root Certificate - TrustedRoot.crt

    Make sure to include the beginning and end tags on each certificate. The result should look like this:

    -----BEGIN CERTIFICATE----- 
    (Your First Intermediate certificate: E-Tugra_Root.crt) 
    -----END CERTIFICATE----- 
    -----BEGIN CERTIFICATE----- 
    (Your Root certificate: TrustedRoot.crt) 
    -----END CERTIFICATE-----
     

  4. Save the combined file as commercial_ca.crt in the following directory: /opt/zimbra/ssl/zimbra/commercial/

  5. Run the following command to validate the certificate chain:

    openssl verify -CAfile commercial_ca.crt commercial.crt (bu komutu eski versiyonda da kullanabilirsiniz)
  6. Once the certificate chain is validated, you can run the following command to enable the new certificate for use: /opt/zimbra/bin/zmcertmgr deploycrt comm commercial.crt commercial_ca.crt