Zimbra Mail Server SSL renew

Reference Website :

https://www.thesslstore.com/knowledgebase/ssl-install/install-ssl-certificate-zimbra-mail-server/

Step - 1 Backing up old configuration files

Directory path : /opt/zimbra/ssl/zimbra/commercial/
mv commercial2025.crt commercial.crt
mv commercial2025.key commercial.key
mv commercial_ca.crt commercial_ca.crt-bkp

Step -2 Copying new certificate files

Directory path : /opt/zimbra/ssl/zimbra/commercial/
mv commercial2025.crt commercial.crt
mv commercial2025.key commercial.key
mv chain-commercial2025.crt commercial_ca.crt
Setting up the permissions :
chmod 777 commercial.key
chmod 777 commercial.crt
chown zimbra:zimbra commercial_ca.crt

Step -3 Verify Certificates

Chaning user to Zimbra
# su - zimbra
/opt/zimbra/bin/zmcertmgr verifycrt comm
/opt/zimbra/ssl/zimbra/commercial/commercial.key
/opt/zimbra/ssl/zimbra/commercial/commercial.crt

Step - 4 Deploying Certificates

/opt/zimbra/bin/zmcertmgr deploycrt comm
/opt/zimbra/ssl/zimbra/commercial/commercial.crt
/opt/zimbra/ssl/zimbra/commercial/commercial_ca.crt

Step -5 Verifying deployed certificates

/opt/zimbra/bin/zmcertmgr viewdeployedcrt

Restarting Services to update the certificates

Switching user
# su zimbra
# zmcontrol restart

Now the certificates will be renewed and mail server will work on SSL/TLS

---