Re: opendkim using remote Zimbra LDAP keystore

From: Quanah Gibson-Mount <>
Date: Mon, 25 Feb 2013 12:50:23 -0800

--On Monday, February 25, 2013 3:23 AM +0100 Ximo Mira <>

> Hi Quanah, thanks for your reply.
> Problem was setting opendkim.conf option UseTLS to 1. That config came
> from Zimbra 8.0.2 opendkim.conf file, but when trying to run opendkim in
> the MXHero server with that option I got that error message due to
> untrusted CA. I had to add ca.pem from Zimbra self-signed server to
> openldap database using certutil command
> [root_at_mxhero ~]# certutil -A -n Zimbra -t "C,C,C" -i ca.pem -d
> /etc/openldap/certs
> After that, TLS connection is ok and opendkim in MXHero box retrieves the
> keys from Zimbra 8.0.2 host and signs the emails.
> Now I just want to know if there will be any issues connecting this
> opendkim i have compiled in MXHero server to the Zimbra 8.0.2 LDAP:

Why would there be any issues? The data used by OpenDKIM from the Zimbra
LDAP server is not OpenDKIM version specific.


Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
Zimbra ::  the leader in open source messaging and collaboration
Received on Mon Feb 25 2013 - 20:50:55 PST

This archive was generated by hypermail 2.3.0 : Mon Feb 25 2013 - 20:54:02 PST