How to request or renew the courier-imapd ssl certificate:<br/>
<br/>
For renewal, only the last two statement to create the imapd.pem file are needed.<br/>
<br/>
cd /etc/ssl/private<br/>
CN=mail.example.com<br/>
openssl genrsa -out $CN.key 1024<br/>
openssl req -new -key $CN.key -config /etc/courier-imap/imapd.cnf -out $CN.csr<br/>
# Make sure that imapd.cnf contains the correct information. Leave out<br/>
# the -config option to enter the certificate data by hand.<br/>
<br/>
# Send the $CN.csr file to your Certificate Authority (for instance www.cacert.org)<br/>
# and paste the resulting certificate in $CN.crt. Don't forget to import the root-<br/>
# certificate in your browser/email client if you get a security warning.<br/>
cat $CN.key $CN.crt > imapd.pem<br/>
# The file name and location where imapd-ssl expects to find the certificate<br/>
# can be found in the file: /etc/courier-imap/imapd-ssl, variable: TLS_CERTFILE<br/>
openssl gendh >> imapd.pem<br/>
<br/>
<br/>
Restart courier-imapd to activate the change. Test your certificate by pointing your browser to: https://mail.example.com:993 and check on the certificate.<br/>
<br/>
<br/>
Thanks go to <a href="http://milliwaysconsulting.net/support/systems/courier-ssl.html" target="_blank">Courier SSL</a>