Question on certificates

R2D2 · October 21, 2024, 10:02am

Used Zammad version: 6.3.1
Used Zammad installation type: package
Operating system: Debian 12
Browser + version: Chrome

In on of the last versions the possibility was introtuced to import certificates into Zammad (Settings, Security, SSL Certificates).

I use Apache as Webserver and uploaded my 3 cert-files to:
/etc/apache2/ssl (ca, crt and key)

I configured the certs in /etc/apache2/sites-available/zammad.conf:
<VirtualHost *:443>
SSLCertificateFile /etc/apache2/ssl/mycert.crt.pem
SSLCertificateKeyFile /etc/apache2/ssl/mycert.key.pem
SSLCertificateChainFile /etc/apache2/ssl/mycert.ca.pem

My question is:
Has the Zammad SSL menu something to do with the webserver or do I still have to change the certificates on the server itself?

MrGeneration · October 21, 2024, 10:05am

The ssl certificate functionality within Zammad has nothing to do with certificates that are used outside of the Zammad application scope (as mentioned in our documentation: SSL Certificates — Zammad Admin Documentation documentation)

This means: Your webserver ssl certificates still belong on the server you’re using and shall not lay in Zammad directly. There’s no good reason to do that.

R2D2 · October 21, 2024, 10:07am

Thank you for the fast answer!