Reputation: 233
IMAP open stream: Self signed certificate issue
I'm trying to open the non-secure (port 143) IMAP connection (I am using PHP):
imap_open('{localhost:143/imap}INBOX', USERNAME, PASS);
and I get the next error: Certificate failure for localhost: self signed certificate ...
Ok. I've tried to use /novalidate-cert mailbox param. Then I get another error: Can not authenticate to IMAP server.
I've also tried to combine all possible non-secure connection params like /notls,/norsh and /secure. But I always get errors.
This is the Dovecot configuration I'm using:
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=LOGIN] Dovecot ready.
The certificate is really self-signed and generated with openssl.
The questions are:
- Why does the certificate error occurs when I am using non-secure connection?
- What is wrong with the mail server configuration?
Upvotes: 5
Views: 6128
Answers (2)
Reputation: 309
Use this code
imap_open('{localhost:143/imap/novalidate-cert/debug}INBOX', USERNAME, PASS);
Instead of this
imap_open('{localhost:143/imap}INBOX', USERNAME, PASS);
Upvotes: 4
Reputation: 10985
STARTTLS of course uses the certificate to start the TLS channel, hence why you saw a self-signed cert error. Can not authenticate, however, implies your username and password are wrong. Try logging in using telnet to verify your user and password are correct
Upvotes: 2
Related Questions
- Getting error like this imap_open(): Couldn't open stream
- PHP imap_open(), OpenSSL, and no Cipher
- How to create self signed certificate with openssl 1.1.1
- Connecting to Gmail through IMAP with PHP - SSL context failed
- PHP imap_open() => [AUTHENTICATIONFAILED] for imap.gmail.com
- PHP Imap Certificate failure
- Why doesn't php's imap_open() like SSL?
- Certificate error using IMAP in PHP
- PHP imap_open failing, but OpenSSL connects
- Connection to gmail with imap error