Proxy the Admin Console via Zimbra Proxy increase TLS security

The Admin Console web-ui is the go-to place for managing your Zimbra installation.

Historically the Zimbra Admin Console was accessed directly without Zimbra Proxy. However there is no longer a need to access the Admin Console without using Zimbra Proxy. And to make sure the Admin Console uses the best TLS security you need to make sure to proxy the Admin UI via Zimbra Proxy. This means you should access Admin UI via the proxied port 9071, and deny access to port 7071 via a firewall. To enable this you should run as user Zimbra:

/opt/zimbra/libexec/zmproxyconfig -e -w -C -H `zmhostname`
zmproxyctl restart

For further security hardening of Zimbra take a look at:


Comments are closed.

Copyright © 2022 Zimbra, Inc. All rights reserved.

All information contained in this blog is intended for informational purposes only. Synacor, Inc. is not responsible or liable in any manner for the use or misuse of any technical content provided herein. No specific or implied warranty is provided in association with the information or application of the information provided herein, including, but not limited to, use, misuse or distribution of such information by any user. The user assumes any and all risk pertaining to the use or distribution in any form of any subject matter contained in this blog.

Legal Information | Privacy Policy | Do Not Sell My Personal Information | CCPA Disclosures