I’m trying to connect my university email account to Mailspring on Windows 10.
Connection fails with the following log:
----------IMAP---------- connect <mailcore::IMAPSession:001DF970> * OK [CAPABILITY IMAP4rev1 LITERAL+ AUTH=PLAIN ID ACL RIGHTS=kxten QUOTA NAMESPACE UIDPLUS XLIST SPECIAL-USE IDLE BM-ROCKS] perdition ready on bm-perdition.univ-montp3.fr 000387f1 ssl connect jade.univ-montp3.fr 993 2 OpenSSL version: OpenSSL 1.1.0f 25 May 2017 Verification failed: X509_verify_cert_error_string: unable to get local issuer certificate X509_get_subject_name: ssl connect certificate ERROR 2
Until recently I was using thunderbird to read my emails and the connection to this email adresse worked there. But I don’t know how to make it work on mailspring, that I would like to use from now on.
I’m going to be honest, I wouldn’t use Mailspring for anything outside of Gmail, Yahoo, Outlook, or other services. Outside of that, Mailspring is not great in terms of compatibility IMHO. If it doesn’t work out of the box, I would try Thunderbird, which has more active support and a larger community.
The error unable to get local issuer certificate typically means your university’s mail server uses a certificate signed by an internal/private CA that Mailspring’s sync engine doesn’t trust. Mailspring uses its own certificate store (from the underlying Rust/OpenSSL libraries) rather than the system certificate store, so even if the system trusts your university’s CA, Mailspring may not. Unfortunately there’s no built-in UI to add custom CAs to Mailspring’s trust store. The most practical solution for now is to use the system-level certificate import to add your university’s root CA to the OS certificate store — on some systems Mailspring will pick this up; on others it won’t. This is a known limitation we’d like to address. Thunderbird tends to handle non-standard CAs better because it uses the system cert store on most platforms.
