Self-Signed SSL for servermgrd (Server Admin)

[Joe_Momma]

Hello, I’ve setup the self-signed certs for LDAP, IMAP, SMTP, HTTPS based on your article and it’s all worked great.

However, I noticed in Server Admin’s prefs, you can require a valid SSL cert. If you hold over the checkbox, you get the following tooltip, “You must install a valid certificate in your server /etc/servermgrd folder”

Which file in our /etc/certs/ directory should be copied to that directory? I notice the destination directory has the same subdirectory’s as httpd. Any chance on updating the article to cover this final area of SSL?

[Anonymous]

Because servermgrd’s certificate is identical for every installation of OSX Server? I get free “official” certificates from CACert, and install them on my server at /Library/Certificates so I can find them when I want them. To get servermgrd to use them, I did this:

mv /etc/servermgrd/ssl.key /etc/servermgrd/old-ssl.key
mv /etc/servermgrd/ssl.crt /etc/servermgrd/old-ssl.crt
ln /Library/Certificates/server.key /etc/servermgrd/ssl.key
ln /Library/Certificates/server.crt /etc/servermgrd/ssl.crt

Hopefully that’s enough to help anybody replace the certificate for servermgrd, whether you put copies there, or just link like I did.

[Author]

Posts