Hi, dear friend,
To share some experience :
I decided last December to switch to Lets Encrypt certificate for our SME 9.1 email server (in order to stop the basic unsigned certificate) for the well know reason.
First Test in December (we have 70/80 users), after having switch to 1st LetsEncrypt SSL certificate:
- OK for receiving/sending mail from Outlook, Thunderbird, Ios, Mac (mail), Android (only Samsung S7, Huawei P8)
- Problem with "LIGHT" Android Phone like Samsung A3, Huawei lite, some custom Android phone from our mobile provider "Android Vofadone Smartphone"
After having turn to the Lets encrypt certificate, no emails were downloaded on the "Light" Android phone.
the thing is we have around 8 Android phones and I had to clear the data of the application of Mail or Remove/add the account in order to receive the email of our server.
Second Test: 2nd week of February the LetsEncrypt SSL certificate has been renewed automatically by the cron job.
Result = Same Problem, we can't receive/send emails with the "Light" Android mobile phone.
I decided to move to my *.domain.com wild card SSL certificate (rapidSSL).
Why : just because I do not have time to check 10 phones every 3 months.
FYI: my Android "problem" phones are configured with Mail basic app. from Android in Imap (SSL) or ActiveSync (SOGo).