Wrong SSL cert is used when two certs have similar CN

Raise/discuss any potential issues with MailEnable for consideration in project issue register.
Post Reply
Docent
Posts: 7
Joined: Sat Jan 09, 2010 3:33 pm

Wrong SSL cert is used when two certs have similar CN

Post by Docent » Tue Apr 15, 2014 7:45 pm

Hi,

I'm using 7.58 Enterprise on Windows Server 2008. My server is named MAIL01 and my primary mail domain is mail.domain.com. I have a cert with CN=mail and SAN=mail.domain.com. Everything was working fine until I installed Management Service for IIS which generated a self-signed cert with CN=WMSvc-MAIL01. From this moment MailEnable started to use this new CN=WMSvc-MAIL01 cert, however in logs I have the following:

Code: Select all

04/15/14 21:39:28	Service bound to certificate with name: "mail".
But it's not true... It seems there is a bug that causes the first certificate that matches the string (in this case, "mail") to be used instead of actually selected one. The only solution for me was to delete the WMSvc-MAIL01 certificate. Can anyone comment on this?

Thanks,

Best regards,
Docent

Post Reply