I would very much like to secure my ISPConfig 3 CP with Let's Encrypt but I seem to be missing: ispserver.pem I followed "The Perfect Server" very carefully Then I created a website (not a subdomain) web1.vmsources.com and secured it with Let's Encrypt successfully: https://web1.vmsources.com Then I followed the tutorial: https://www.howtoforge.com/tutorial/securing-ispconfig-3-with-a-free-lets-encrypt-ssl-certificate/ No JOY. THX, -John Code: Last login: Thu Jun 18 14:15:48 2020 from 192.168.99.15 [email protected]:~# hostname web1 [email protected]:~# hostname -f web1.vmsources.com [email protected]:~# cd /usr/local/ispconfig/interface/ssl/ [email protected]:/usr/local/ispconfig/interface/ssl# mv ispserver.crt ispserver.crt-$(date +"%y%m%d%H%M%S").bak [email protected]:/usr/local/ispconfig/interface/ssl# mv ispserver.key ispserver.key-$(date +"%y%m%d%H%M%S").bak [email protected]:/usr/local/ispconfig/interface/ssl# mv ispserver.pem ispserver.pem-$(date +"%y%m%d%H%M%S").bak mv: cannot stat 'ispserver.pem': No such file or directory
More info based on this post: ISPConfig vhost file: Code: # SSL Configuration SSLEngine On SSLProtocol All -SSLv3 SSLCertificateFile /usr/local/ispconfig/interface/ssl/ispserver.crt SSLCertificateKeyFile /usr/local/ispconfig/interface/ssl/ispserver.key #SSLCACertificateFile /usr/local/ispconfig/interface/ssl/ispserver.bundle Actual DIR /usr/local/ispconfig/interface/ssl: Code: [email protected]:/usr/local/ispconfig/interface/ssl# ls -lahtr total 28K -rwxr-x--- 1 root root 3.3K Jun 17 23:06 ispserver.key.secure -rwxr-x--- 1 root root 1.8K Jun 17 23:08 ispserver.csr -rwxr-x--- 1 root root 2.2K Jun 17 23:08 ispserver.crt -rwxr-x--- 1 root root 3.2K Jun 17 23:08 ispserver.key drwxr-x--- 9 ispconfig ispconfig 4.0K Jun 17 23:08 .. drwxr-x--- 2 root root 4.0K Jun 17 23:08 . -rwxr-x--- 1 root root 45 Jun 17 23:11 empty.dir I wonder if it is related to my post on Friday last week: https://www.howtoforge.com/communit...g3-install-cant-load-root-rnd-into-rng.84589/ THX, -John
That's ok, you seem to have left out the pure-ftpd ssl creation from perfect server guide. Just continue with the let's encrypt guide, it does not matter for it that the .pem file is missing.
Just checked the Ubuntu guide which you probably used, it uses a different file name for pure-ftpd. So everything is fine and there is no issue on your server.