Sslnicknames Option

From Messaging Server Technical Reference Wiki
Jump to: navigation, search


The sslnicknames option (available at base level, and also available at a variety of more specific levels) specifies a list of the nicknames of the certificates in the SSL certificate database to offer as the server certificate. Only one nickname of each certificate type is permitted (e.g., one RSA certificate, one DSS certificate) so normally only one will be specified.

Use with base

The sslnicknames Base option specifies a list of the nicknames of the certificates in the SSL certificate database to offer as the server certificate if SSL/TLS is enabled. Only one nickname of each certificate type is permitted (e.g., one RSA certificate, one DSS certificate) so normally only one will be specified. The default is "Server-Cert". This base level list may be overridden for particular services.


The default value in this context is: Server-Cert


See also:

Use with http

The sslnicknames MSHTTP option specifies a list of SSL/TLS server certificate nicknames (only one per certificate type) for HTTP to offer clients if SSL/TLS enabled. Overrides for HTTP the base level sslnicknames option (corresponding to the legacy configuration encryption.rsa.nssslpersonalityssl configutil parameter).


See also:

Use with imap

The sslnicknames IMAP option specifies a list of SSL/TLS server certificate nicknames (only one per certificate type) for IMAP to offer clients if SSL/TLS enabled. Overrides for IMAP the base level sslnicknames option (corresponding to the legacy configuration encryption.rsa.nssslpersonalityssl configutil parameter).


See also:

Use with mta

The sslnicknames MTA option specifies a list of SSL/TLS server certificate nicknames (only one per certificate type) for MTA to offer clients if TLS is enabled. Overrides for the MTA the base level sslnicknames option (corresponding to the legacy configuration encryption.rsa.nssslpersonalityssl configutil parameter). This option in the mta group presently also applies to the MTQP and ManageSieve servers.


See also:

Use with pop

The sslnicknames POP option specifies a list of SSL/TLS server certificate nicknames (only one per certificate type) for POP to offer clients if SSL/TLS enabled. Overrides for POP the base level sslnicknames option (corresponding to the legacy configuration encryption.rsa.nssslpersonalityssl configutil parameter).


See also:

Use with the MMP

The sslnicknames option (available at MMP, IMAP Proxy, POP Proxy, and vdomain level, as well as at Base and other levels) specifies a list of the nicknames of the certificates in the SSL certificate database to offer as the server certificate. Only one nickname of each certificate type is permitted (e.g., one RSA certificate, one DSS certificate) so normally only one will be specified.


The default value in this context is: Server-Cert


See also:

Use with ens

The sslnicknames ENS option specifies a list of SSL/TLS server certificate nicknames (only one per certificate type) for HTTP to offer clients if SSL/TLS enabled. Overrides for HTTP the base level sslnicknames option (corresponding to the legacy configuration encryption.rsa.nssslpersonalityssl configutil parameter).


The default value in this context is: Server-Cert


See also:

Use with the IMAP proxy

The default value in this context is: Server-Cert


See also:

Use with the POP proxy

The default value in this context is: Server-Cert


See also:

Use with vdomain

The default value in this context is: Server-Cert


See also:


See also: