1. Knowledge Base
  2. MDaemon® Email Server

How do I enable and configure SSL & TLS for SMTP, POP3, and IMAP in MDaemon

This article details how to enable SSL/TLS for the SMTP, POP3, and IMAP protocols in MDaemon.

Please Note:


This article will assume there is not a SSL certificate installed on the Windows server, and will be using a self-signed certificate. In the MDaemon console: 

  1. Click the Security menu
  2. Click Security Manager/Settings
  3. Click SSL & TLS
  4. Select MDaemon
    enable and configure SSL & TLS for SMTP, POP3, and IMAP in MDaemon email server
  5. Click Enable SSL, STARTTLS, and STLS
  6. Click Enable the dedicated SSL ports for SMTP, IMAP, POP3 servers 
    This will enable the dedicated ports specified in the Server Setting menu. This will not affect clients using STARTTLS and STLS on the default mail ports.
  7. Click SMTP server sends mail using STARTTLS when possible
    This will enable MDaemon to use the STARTTLS extension for every SMTP message it sends if the server supports STARTTLS.
  8. Click SMTP server requires STARTTLS on MSA port
    Enable this option if you wish to require STARTTLS for connections to the server made on the MSA port.
  9. Click DomainPOP/MultiPOP servers use STLS whenever possible 
    If the DomainPOP and/or MultiPOP protocols are being used.  This will enable the STLS extension whenever possible for DomainPOP/MultiPOP connections.

To generate a self-signed certificate in MDaemon:

  1. Select Create Certificate
    ssl self signed certificate creation window in mdaemon email server software
  2. Type your Fully Qualified Domain Name (FQDN) within the Host name field
  3. Type your Organization/Company Name 
    If you have alternate host names, type them within the Alternative host names field separated by a comma
  4. Select the Encryption key length (default is 2048)
  5. Select the Country/Region your server resides in
  6. Click Create certificate
  7. Click OK. 
    This will restart the SMTP, POP, and IMAP services.

Note: If you are using a third party certificate, follow the instructions given by the provider to install it using the Microsoft Management Console (MMC) or other means. Once installed, you may omit the steps listed to generate a self signed certificate. Instead, single click the certificate you wish to use and click Ok. 

Note: The request and installation of third party SSL certificates is NOT supported by MDaemon Technologies Technical Support staff, and those who choose to use a third party certificate should be aware of all security issues related to installing and using SSL certificates with their Operating System. If you have questions or issues regarding your third party SSL certificate, please contact the vendor from whom you purchased the certificate.