STARTTLS is the SMTP command to connect to email servers securely over TLS (formerly SSL). Use with an email server tag like [postfix], [exchange], etc.
Questions tagged [starttls]
106 questions
1
vote
1 answer
How can I tell if my LDAP authentications are using StartTLS?
I'm setting up a new OpenLDAP server on Ubuntu 12.04 with a copy of our current LDAP database. I've gotten most of the configuration down, I think, but I'm having trouble telling if the LDAP queries are encrypted or not. I suspect there may be a…
![](../../users/profiles/127293.webp)
zymhan
- 1,351
- 1
- 14
- 30
1
vote
2 answers
Postfix Send Error: Must Issue STARTTLS command
Running Ubuntu 12.04 and trying to configure postfix to relay send and receive through GMAIL. Am running into connection issues particularly with TLS. Have tried a bunch of troubleshooting solutions and have changed my main.cf to address TLS but…
![](../../users/profiles/123337.webp)
Mary Elizabeth
- 13
- 1
- 1
- 4
1
vote
2 answers
How can I ensure Liferay uses TLS for authentication
Please note, this is about communication between Liferay and the LDAP server, not communication between the user's browser and Liferay
I'm asking this here since I got zero views (other than my own) in 30 minutes at the liferay forums, and I'd like…
![](../../users/profiles/109339.webp)
Gus
- 127
- 2
- 11
1
vote
2 answers
slapd with STARTTLS only doesn't work
I'm using slapd under Debian/Squeeze and trying to configure the system to only allow TLS-encrypted connections using STARTTLS on port 389.
So I've configured my /etc/default/slapd to listen on port 389:
SLAPD_SERVICES="ldap://:389/"
I generated a…
![](../../users/profiles/99942.webp)
Daniel
- 11
- 2
1
vote
2 answers
Handling http and https requests using a single port with lihgttpd
At the moment I am using http and https as different port.
And based on request uri,
I made a redirection rule from http to https switch and vice versa.
But If I can use only a single port for https and https in lighttpd.
That will be the best…
![](../../users/profiles/57654.webp)
agfe2
- 113
- 4
1
vote
0 answers
Personal OpenSMTPd relay fails when using "tls-require", works fine with just "tls"
I'm currently setting up a somewhat unique personal email server using OpenSMTPd. I have a local server (Raspberry Pi) and a remote server (VPS). Emails sent to me are sent to the remote server and are then relayed to my local server. When I send an…
![](../../users/profiles/961015.webp)
Josey
- 11
- 2
1
vote
0 answers
Can't configure SMTP encryption - postfix
I have docker-mailserver and Roundcube in containers, beside there is MySQL database for mail data and user passwords. Dovecot inside is configured to verify logging in users passwords with database. Yesterday I've configured IMAP and it is working…
![](../../users/profiles/163177.webp)
pbies
- 159
- 12
1
vote
1 answer
Postfix is getting "TLS Is required, but was not offered by host"
I've searched every forum, every article, every serverfault.com post for this issue. I'm using a fresh setup of Postfix. It is managed by Virtualmin. Whenever I try to send mail via TLS, I get the error (identifable information removed):
Sep 7…
![](../../users/profiles/823847.webp)
Ashley
- 41
- 6
1
vote
1 answer
Using stunnel as proxy between SSL versions for SMTP with STARTTLS
I have a quite old software which doesn't support TLS 1.2. However SMTP Server only supports TLS 1.2.
Now I wanted to use stunnel to connect to SMTP server and and also listening for smtp access. I have already a valid certificate for this server.…
![](../../users/profiles/507188.webp)
Hannes
- 157
- 8
1
vote
1 answer
Gmail failing to accept TLS
I recently set up a postfix mail server. Testing it with other domains, everything seems to work well.
However, when my server tries to send messages to gmail, they are marked as spam, with the red padlock and note rr.com did not encrypt this…
![](../../users/profiles/623575.webp)
Onion
- 21
- 2
1
vote
1 answer
Deny non TLS incoming mail with postfix and force certificate check
I want to deny non TLS incoming mails on my postfix server.
Here is what i've done:
smtpd_tls_security_level = encrypt
smtpd_tls_auth_only = yes
I do not really understand the difference between this 2 lines, but it seems to work.
Now, what i want…
![](../../users/profiles/384241.webp)
Bob5421
- 337
- 2
- 8
- 13
0
votes
1 answer
TLS from unknown: No client certificate presented
We have setup a windows server virtual SMTP (under IIS6 manager). In the SMTP settings, TLS encryption is enabled, fqdn field is "sharepoint.mycompany.com".
In the server's cert store "personal" folder we have the certificate…
![](../../users/profiles/213511.webp)
Mark
- 217
- 3
- 11
0
votes
1 answer
Ambari sync with LDAP using StartTLS
I'm facing an issue to sync Ambari with a LDAP server using StartTLS and a self-signed certificate. Ambari server and ldap server are both running on the same machine. I've followed the steps written in the doc but I'm not sure if I'm in the LDAPS…
![](../../users/profiles/486193.webp)
JeremyJJ
- 1
0
votes
1 answer
No STARTTLS with Dovecot and Postfix
I have done a lot of searching and am not finding a solution.
I had to reload Mageia 6 on my email server. I am using dovecot-2.2.34-1.mga6 and postfix-3.1.6-1.mga6. Openssl is openssl-1.0.2o-1.mga6.
I can send and receive email from Postbox…
![](../../users/profiles/485913.webp)
Robert A. Ober
- 13
- 6
0
votes
1 answer
SMTP Server (Exchange 2003) hangs up on client after STARTTLS command after adding cert
I am stumped on this. I have Exchange Server 2003 still in use. I created a valid LetsEncrypt SSL cert, and successfully imported the pfx in my Default SMTP Virtual Server properties, Access tab. Now, clients sending EHLO are told STARTTLS is…
![](../../users/profiles/360578.webp)
Brian B
- 111
- 5