Hello,

I have in my sendmail.mc

DAEMON_OPTIONS(`Addr=aa.bb.cc.123, Port=465, Name=MTA-123-TLS, M=a,p')
DAEMON_OPTIONS(`Addr=aa.bb.cc.124, Port=465, Name=MTA-123-TLS, M=a,p')

and

O CACertPath=/etc/mail/tls
O CACertFile=/etc/mail/tls/ca.crt
O ServerCertFile=/etc/mail/tls/sendmail-server.crt
O ServerKeyFile=/etc/mail/tls/sendmail-server.key
O ClientCertFile=/etc/mail/tls/sendmail-client.crt
O ClientKeyFile=/etc/mail/tls/sendmail-client.key

Now,

aa.bb.cc.123 dns name is mail123.domain.com
aa.bb.cc.124 dns name is mail124.domain.com

Is it possible to have server to present/verify different
certificate for each daemon ? Actually verification is
not the point, the problem is, that when I have one
server certificate used on all daemons, and different
users use different daemons for sending their emails,
the certificate name (CN) doesn't match with
the server name, and they always get annoying
dialog box. I'm using my own CA and my root CA certificate
is installed on all client machines, all generated certs
are signed properly, it's only about the DNS name of particular
IP address.

I could create different sendmail instances with different .cf files,
or simply make the same DNS name to be resolved in two
addresses randomly, but none of these does not satisfy me.
I just would like to have different certs on different daemons,
is it possible?
Regards,
DT