Red Hat Training

A Red Hat training course is available for RHEL 8

Chapter 15. Securing email communication using SSL

You can secure email communication using self signed certification. SSL certification can be done in 2 ways:

  • by applying to a Certificate Authority (CA) for an SSL certificate
  • by creating a self-signed certificate.


Perform the following steps to create a self-signed SSL certificate for IMAP or POP

  1. Edit the certificate parameters in the /etc/pki/dovecot/dovecot-openssl.cnf as you prefer, and type the following command:

    # rm -f certs/dovecot.pem private/dovecot.pem
    # /usr/libexec/dovecot/
  2. Ensure you have the following configurations in your /etc/dovecot/conf.d/10-ssl.conf file:

    ssl_cert = </etc/pki/dovecot/certs/dovecot.pem
    ssl_key = </etc/pki/dovecot/private/dovecot.pem
  3. Execute the following command to restart the dovecot daemon:

    # systemctl restart dovecot