In this article, we will discuss how to create a Let's Encrypt certificate that is free for both Cloud and On-premise customers to secure your email communication in the WebClient.
ABOUT LET'S ENCRYPT
Let's Encrypt is a certificate authority (CA) that is automated, open, and operates for the benefit of the public. It is a service offered by the Internet Security Research Group (ISRG). To enable HTTPS (SSL/TLS) for websites, customers require digital certificates, which can be obtained for free using the Let's Encrypt Certificate. If you wish to know more about obtaining a free Let's Encrypt certificate, please visit their website.
Prior to creating the Let's Encrypt certificate, customers of both types must first establish their own domain and DNS record. We have a useful article on DNS records that you are welcome to refer to.
When using the cloud service, customers are provided with an onice.io domain with a prefix of their choice. This domain serves as the hostname of their server, such as example.onice.io. For additional information on the onice.io domain, please refer to this article.
Note: Use your Cloud name instead of example.onice.io. |
CERTIFICATE INSTALLATION (ICEWARP CLOUD)
To begin, access the WebAdmin - the Administrator UI for your server. Look for the grey icon to locate it.
Please click on "Administration".
You will be redirected to the Administrator UI, where you have to click on "hamburger menu" and select "Server settings"
Then select "Certificates" and click on "ADD"
For the purpose of this article, you will need to select a certificate option, "Free Let's Encrypt certificate" and click on the "Continue" button next to it.
Next, you will be prompted to select the hostname for the certificate creation. If you do not intend to utilize Autodiscover (Autodiscover service minimizes user configuration and deployment steps by providing clients access to Exchange features), simply enter "mail.yourdomain.com", replacing "yourdomain.com" with your actual domain. However, if you plan to use Autodiscover, click on "Add hostname" and enter "autodiscover.yourdomain.com" after changing "yourdomain.com" to your actual domain.
Your screen will then appear like the following (excluding the autodiscover row if not selected):
To successfully create the Let's Encrypt certificate, click on "Save" and wait for a few minutes. Once completed, the certificate should appear as follows:
CERTIFICATE INSTALLATION (ON-PREMISE)
To install a certificate on your on-premise IceWarp, you must have an existing domain. Unlike Cloud customers, who have an onice.io domain by default, on-premise customers must register a domain to get a hostname, such as "mydomain.com," to bind the certificate.
Additionally, make sure to check if port 80 is open for two-way communication and if the server is resolvable from outside your network.
To begin, access the Remote Console and navigate to the System -> Certificates tab
Click on the "Add/Create..." button situated at the bottom of the page
Select the "Free Let's Encrypt Certificate" and click on "Next"
Next, you will be prompted to select the hostname for the certificate creation. If you do not intend to utilize Autodiscover (Autodiscover service minimizes user configuration and deployment steps by providing clients access to Exchange features), simply enter "mail.yourdomain.com", replacing "yourdomain.com" with your actual domain. However, if you plan to use Autodiscover, click on "Add hostname" and enter "autodiscover.yourdomain.com" after changing "yourdomain.com" to your actual domain.
Your screen will then appear like the following (excluding the autodiscover row if not selected):
Once you complete this step, a pop-up window will notify you that the certificate has been created, and its validation will run in the background.
Once you have completed all the necessary steps, your certificate page should resemble this:
Congratulations! You have successfully created a free Let's Encrypt certificate. If you encounter any problems along the way, please don't hesitate to contact our support team for assistance.
Comments
0 comments
Article is closed for comments.