Build In Let's Encrypt per domain
Idea shared by John Marx - August 27 at 9:07 AM
Proposed
Can we get an automated script that will every 60 days (Let's Encrypt recommendation) that creates and auto-renews Let's Encrypt certificates? This way all of our customers can access https://xxxx.domain.com securely and always.
 
We do this on our IIS boxes for all websites. Why can't we automate this for SmarterMail?

5 Replies

Reply to Thread
6
Matt Petty Replied
Employee Post
We've been kicking the idea for some sort of integration in SM around at the office, you got my upvote! We already have this in our backlog for future features already. However, please if you would like to see this, upvote and draw attention. :)
Matt Petty
Software Developer
SmarterTools Inc.
(877) 357-6278
www.smartertools.com
1
Here's a thread from 2016 where this was suggested and discussed...
 
And here's a thread from 2017 where I suggested:
"How about baking Let's Encrypt right into SmarterMail, just like ClamAV, SpamAssassin, etc.?  This would make it easier for admins to get it working without all the technical issues."
Unfortunately it's been on the list for several years and not much has been done.
0
I had looked at that but it didn't fit the role completely. It is a half-baked solution which none of us would want. I think we're all tired of half a solution and want to do things more correctly. I have tried the steps and often it just doesn't work perfectly. A full-featured solution that is reliable and monitored by the application itself is the only right solution.
0
Agree 100%. Actually, that probably wasn't the best thread to link to. I updated my reply above to link to another thread.
0
I think it would be a good idea, but trying to figure out how to it would work best.
 
On my cPanel server I purchased a Let's Encrypt module that will update each domain's SSL cert it also makes it super easy to protect a customers website. It automatically updates the cert either every 30 or 60 days. So the users can create a cert for their domain.
 
On my mail server I one DNS name for all users to use the same incoming and outgoing DNS name for communications. This is one of several devices I use with my wild card SSL.
 
To me having the insurance of a paid cert is comforting but a free cert would be nice.

Reply to Thread