How to Configure SSL/TLS to Secure SmarterMail?

This article describes how to secure SmarterMail server by configuring SSL/TLS.

NOTE: Before performing following steps, you will have to purchase SSL certificate from SSL provider and have it installed on your VPS.


Export SSL Certificate to a Base-64 Encoded Certificate


  1. Connect to your Windows VPS/Server through Remote Desktop where you have installed SmarterMail.
  2. Click Start, select Run. Type MMC, hit enter.

    Run Menu

  3. Open File >> Add\Remove Snap ins.

    Add Remove Snap-in

  4. From the list of available snap-ins, select Certificates and hit Add.


  5. A new window will appear, choose Computer account and hit Next.

    Computer Account

  6. Ensure local computer is selected and hit Finish.

    Local Computer

  7. In certificate tree view, expand Personal and choose Certificates.

    Certificate List

  8. Right click on certificate you wish to export >> All Tasks >> Export.

    Certificate Properties

  9. A new window will appear, hit Next.
  10. Select No, do not export private key >> Next.

    Export Private Key

  11. Save the certificate as Base 64 x509 .cer file >> Next.

    Export File Format

  12. Save the certificate at location C:\SmarterMail\Certificates\<websitename>. Name the certificate and click Save.

    Export Certificate

Add Ports to Listen Over SSL/TLS

  1. Login to SmarterMail as admin user.
  2. Click on Settings icon.
  3. Expand the Bindings folder and click Ports in the navigation pane.

    Port Bindings

  4. Click New in the content pane toolbar. A popup window will display.

    Certificate Path

  5. Enter required fields; Protocol, Encryption (SSL or TLS), Name, Port and Path of Certificate.
  6. Click on Verify Certificate to ensure the certificate exists in the specified path.
  7. Click on Save.
  8. Using above steps, add POP3, SMTP and IMAP ports to be encrypted with SSL or TLS.


Add Secure Ports to Listen on SmarterMail IP address

  1. Log in to SmarterMail as admin user.
  2. Click on Settings icon.
  3. Expand the Bindings folder and click IP Addresses in the navigation pane.
  4. Select desired IP address and click Edit.

    Binding IP Address

  5. Use the checkboxes to select the port(s) you would like the IP address to listen on.
  6. Click Save.
  7. Allow the ports 993, 995 and 465 in firewall and verify it by telnet.

Was this answer helpful?

« Back


/* */