Hi
On Thursday 17 July 2014 at 6:24:36 AM, in <mid:1117609439.20140717152...@sunnysydney.com>, Tom wrote: > using TLS for email retrievals from our mail server > now, we installed a new certificate on the server. > It's a valid certificate but self-signed and while > outlook and other mail programs are happy, my TB does > not like it Are the other MUAs actually happy, or just configured to ignore errors? And, if the latter, are they really receiving the mail over an encrypted connection or is it falling back to unencrypted? > I am getting an alert "that the server did not > provide a root certificate during the session, and > there is no root certificate in my address book. > Connection may not be secure. The options to view or > add to trusted are greyed out. I have a choice to > continue and if I do so I am getting my email. And when this happens, is it transmitted over an encrypted channel or not? > But this > is per email account and each time I want to retrieve > emails, so not a working solution. Indeed not. > How do I import a root certificate. It's several years since I needed to do this, and my memory of it is unclear. I think you set up an address book entry, import the certificate into that AB entry, view the certificate, go to the "certification path" tab, select the certificate you want to trust, and click "add to trusted." > I can see the > address book section and the import function there > but I am unclear on how to create the file for import. > What format should that be in? .cer, .p12, .pfx seem to work, at least. > I have an email with > the certificate details (a quick SSL Basic SSL > Certificate and could copy/paste that info into a > file but I suspect The Bat is looking for something > more than a text file? See above. > I did some searching but found either very old > postings without any outcomes or a simple import > advice. Sorry I am not experienced enough and any > assistance will be appreciated a lot. I played about with self-certificates quite a few years ago, and just for email, not TLS. And I have had to import new root certificates a few times, when email service providers changed server certificates and when correspondents had s/mime certificates from a CA that was not already there or had expired. So no great wealth of experience on my part. -- Best regards MFPA mailto:2014-667rhzu3dc-lists-gro...@riseup.net He who rests on his laurels wears them on wrong end. Using The Bat! v4.0.38 on Windows XP 5.1 Build 2600 Service Pack 3 ________________________________________________ Current version is 6.1.8 | 'Using TBUDL' information: http://www.silverstones.com/thebat/TBUDLInfo.html
