Mail Shield related SSL eror (unable to get local issuer certificate)
With Mail shield's "Scan SSL connections" enabled, I got this error (unable to get local issuer certificate) and cannot send/receive e-mails.
If I disable "Verify server certificate" in mail software settings, I can send/receive normally.
the Mail Shiled stores its Root certificate to the Windows cetificate store which is used by most mail clients. Some mail clients (e.g. Thunderbird) use its own certificate store which needs additional handling.
Currently we handle Thunderbird so it should work automatically. If Thunderbird is running when the certificate is added, a message is displayed that you should restart Thunderbird. Unfortunately this message is empty in the pre-beta version. Please check if the certificate is in your Thunderbird store (Tools->Options->Advanced tab->Certificates tab->View Certificates->Authorities tab).
Other mail clients that have its own certificate store will need manual configuration:
1) Run Certmgr.msc, go to Trusted Root Certification Authorities and find "avast! Mail Scanner Root" certificate and export it to a file
2) Go to the mail client's certificate store and import that certificate