how to import a zimbra trusting cert into IE

Well, I finally made some progress. Of course, being relatively new to CAs, certificate trust chains, etc. I ended up wasting half my day figuring it out.

Most of the research I did pointed to importing the certificate presented to the browser when using the ZWC into the Trusted Root Certification Authorities store, which no matter how many dozens of ways I did it made no difference. I ended up going into /opt/zimbra/ssl/zimbra/ca and converting the PEM format ca.pem certificate into Windows compatible DER format:

openssl x509 -inform PEM -in ca.pem -outform DER -out ca.cer

Then I imported this into the Trusted Root Certification Authorities store and finally I’m not getting the warnings from IE.

I did have one more question for anyone knowledgeable with certificates and domains/DNS. I’d like to use the servers host name as the URL instead of the FQDN (e.g. https://mail/ instead of to simplify things, but of course the browser then complains the URL doesn’t match the certificate (issued to Anyone know if this is possible without getting the warnings? I tried to create a certificate using just the hostname but it requires a proper domain name.
Reply With Quote Quick reply to this message
View Public Profile
Send a private message to EnSn
Find all posts by EnSn
Add EnSn to Your Buddy List
#3 (permalink) Add to raj’s Reputation Report Post
Old 03-08-2010, 06:06 PM
raj’s Avatar
raj raj is offline
raj’s Zimbra Wiki Sandbox Page

Joined: Oct 2005 – Rep: 6 x 6 raj will become famous soon enoughraj will become famous soon enoughraj will become famous soon enough
Location: USA, Canada and India
ZCS/ZD Version: Release 5.0.18_GA FOSS Ed., CentOS 5.3 on VMware ESXi
Posts: 592
just for future …you can just download the ca.pem and rename to ca.crt and double click on it in windows the install the need to convert


The key to immortality is first living a life worth remembering. – Bruce Lee

MS Age of Empires Settings

How to get pop 200 offline , Click start, programs , microsoft games , age of empires , then Right click on the Age Of Empires Icon and go to Properties and then select the Target Box it should say “C:\Program Files\Microsoft Games\Age of Empires\Empires.exe” u need to add limit=200 and the end of it so it reads “C:\Program Files\Microsoft Games\Age of Empires\Empires.exe” limit=200 and then Launch the game from Start / Programs / Microsoft Games/ Age Of Empires / Age Of Empires When it has opened , go to MULTIPLAYER , then type in anyname , then Internet tcp/ip , then click ok , Now press CREATE then enter any game name , And your ready to play with pop 200 Offline Its seems hard the first time but u get the hang of it easy]]>

UPnP Problems?

For some reason, on my home LAN, I have trouble playing Age of Empires. I know, it’s an old game, but I still like to play it. I’m connected at home via a Linksys WRT54G-L. I’ve also connected up a Netgear MR814 used as a hub, but I don’t think that’s the issue. I’m not using dhcp on either of those boxes – I have a separate machine as a dhcp server. Anyways, clicking “Show games” would never work! I thought initially it was some software issue, so I reinstalled Windows and it still didn’t work. I swapped out the WRT54G-L for a switch and then it worked! After some googling, I found that it might be the UPnP. Hopefully, this fixes it. It works now, but then again, it used to work before too. We’ll see.