TLS working for outgoing, but not incoming

stevewilwerding

New Member
Apr 21, 2023
15
1
1
We have a TLS certificate installed, and it is working for outgoing TLS connections:

tls_config.jpg

However, once we started to route internal traffic through the Proxmox, servers trying to use TLS to connect to Proxmox starting generating these errors:

In: STARTTLS
Out: 454 4.7.0 TLS not available due to local problem

syslog shows:
warning: No private key found in /etc/pmg/pmg-tls.pem

pmg-tls.pem is in the correct format:

-----BEGIN ENCRYPTED PRIVATE KEY-----
-----END ENCRYPTED PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----

Ideas?
 
-----BEGIN ENCRYPTED PRIVATE KEY-----
on a hunch - it looks as if the key is protected by a passphrase - this does not work (in the very least because you'd need to enter the passphrase whenever postfix starts)

Create a key without passphrase and a certificate based on it and use that.

I hope this helps!
 

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!