Hi All,

We have a multi server zimbra setup. ( ZIMBRA 7.2 )

server1 - MTA1 , Master Ldap, snmp and nginx

server2 - MTA2 , Ldap replica, snmp and nginx

Server3 - Mailbox server and snmp

in additon to that , 2 piranha load balancers forward port 25 traffic to server1 (mta1) and server2 (mta2) and also forward port 80 traiffic to server1 (nginx) and server2 (nginx)

@ the time of installation of mailbox server, It asked the SMTP Host. then, I gave the hostname of piranha load balancers virtual ip (for example- piranha vip - is smtp.example.com)

Evderything is woks well.

But, The question is default certificate expires in one year. Before going to production, LET'S SAY We want to generate new certificate FOR 10 YEARS since it lasts long.

I followed these below articles,

Administration Console and CLI Certificate Tools - Zimbra :: Wiki

How to re-create self-signed certificate in a multiserver platform? - Zimbra :: Wiki

On which server ( in my case ) should run these commnads?

I ran on Server 1 as it has primary ldap

But, after runing these commands,

We can NOT start zimbra any of 3 servers.

We get the error, While staring zimbra

Unable to determine enabled services from ldap.
Enabled services read from cache. Service list may be inaccurate.

I have seen this issue in zimbra forums