Courier IMAP SSL Certificate Installation

  1. Create a combined .pem certificate file:

    Open a text editor and paste the contents of the primary certificate and the private key one after another in the following order:

    1. The Primary Certificate (your_domain_name.crt)
    2. The Private Key (your_domain_name.key)

    Include the 'BEGIN' and 'END' tags on each. The result should look like this:

    -----BEGIN CERTIFICATE----- 
    (Your Primary SSL certificate: your_domain_name.crt) 
    -----END CERTIFICATE----- 

    -----BEGIN RSA PRIVATE KEY----- 
    (Your Private Key: your_domain_name.key) 
    -----END RSA PRIVATE KEY-----

    Save the combined file as etugrasslcertificate.pem

  2. Save the E-Tuğra Intermediate certificate:

    Copy the E-Tuğra intermediate certificate (E-Tugra_root.crt) into a text editor and save it as a new file named e-tugra_root.txt.

  3. Securing your Courier IMAP:

    Locate and open imapd-ssl file (typically found in /usr/lib/courier-imap/etc/). Add the following directives and file locations:

    • TLS_CERTFILE=/some/path/e-tugrasslcertificate.pem
    • TLS_TRUSTCERTS=/some/path/etugra_root.txt

    Please verify that line below line is allowing SSL3

  4. Securing your POP3:

    Locate and open pop3d-ssl file (typically found in /usr/lib/courier-imap/etc/). Add the following directives and file locations:

    • TLS_CERTFILE=/some/path/e-tugracertificate.pem
    • TLS_TRUSTCERTS=/some/path/e-tugra_root.txt
  5. File permissions:

    Make sure that the file permissions are set so that e-tugrasslcertificate.pem is readable by root only.

  6. Restart the Courier IMAP server.