SSL not fully trusted on ports 993 and 587 of our mail server by Zendesk

brandonperdue

7/30/23, 11:29 PM

We have our own mail server running using iRedMail on Apache. It's been working for us for a number of years and there haven't been any issues with the SSL until now. One of our clients is trying to connect their smtp credentials to their Zendesk account and Zendesk is rejecting the connection because it doesn't fully trust the SSL. Zendesk support sent us to https://www.sslshopper.com/ssl-checker.html. When we test the domain on there without any ports it gets a full pass. If we put a ":587" or ":993" on the test we get the following error:

The certificate is not trusted in all web browsers. You may need to install an Intermediate/chain certificate to link it to a trusted root certificate. Learn more about this error. You can fix this by following Sectigo's Certificate Installation Instructions for your server platform (use these instructions for InstantSSL). Pay attention to the parts about Intermediate certificates.

We've ran tests on the ssl through ssllabs as well and both the imap. and smtp. addresses get A+ grades. Does anybody have any ideas about how to get this to work? Are there any port settings that we may not be thinking of?

0 + 0

ssl

email-server

apache-2.2

apache-2.4

Steffen Ullrich

7/30/23, 11:37 PM

*"We've ran tests on the ssl through ssllabs as well and both the imap. and smtp. addresses get A+ grades. "* - IMAP, SMTP, HTTP are different ports with different servers and different configurations. SSLLabs only checks HTTP, so the results cannot be used to make assumptions about the configuration on IMAP and SMTP ports. Based on the error messages either the certificate used is wrong, the domain name to access the IMAP/SMTP servers is wrong or the proper chain certificates are not configured. Impossible to tell with only this error message, i.e. the exact domain name is needed to check.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: SSL not fully trusted on ports 993 and 587 of our mail server by Zendesk

TH: SSL ไม่ได้รับความไว้วางใจอย่างสมบูรณ์บนพอร์ต 993 และ 587 ของเซิร์ฟเวอร์อีเมลของเราโดย Zendesk

RO: SSL nu este pe deplin de încredere pe porturile 993 și 587 ale serverului nostru de e-mail de la Zendesk

RU: SSL не полностью доверен на портах 993 и 587 нашего почтового сервера Zendesk

VI: SSL không được tin cậy hoàn toàn trên các cổng 993 và 587 của máy chủ thư của chúng tôi bởi Zendesk

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.