ISPConfig 3.2, Apache and LetsEncrypt

Discussion in 'Installation/Configuration' started by Taxi, Dec 10, 2020.

  1. Taxi

    Taxi Member

    Dear Community,
    I'm running Debian Testing with PHP 7.4.11.
    I have Problems with SSL and LetsEncrypt. When I check the Let's Encrypt button in the configuration of a website in ISPConfig, then the certificate is generated only in the /root/.acme.sh/ directory, but not in the /etc/letsencrypt/ssl/live/ directory.
    When I'm running certbot from the command line and choose a website, then the certificate is created in /etc/letsencrypt/live/ directory.
    Any ideas on this behavior?
    Many thanks
    Christian
     
  2. ahrasis

    ahrasis Well-Known Member HowtoForge Supporter

    Firstly, I think default LE client is acme.sh in ISPConfig 3.2 i.e. if you don't have official LE client installed (i.e. either certbot, certbot-auto or letsencrypt).

    Secondly, though its code will choose acme.sh over certbot, you should not have two or more LE clients installed nor should you use to obtain LE SSL certs via cli.

    The behaviour you mentioned is exactly what will happen should you mix two or more LE clients in your server and use one of them to issue LE SSL certs from the terminal.

    What you should do is have ony one LE client installed, do not use cli to obtain LE SSL certs unless you know what you are doing and follow LE FAQ to troubleshoot if you have problems with LE.
     
    Jesse Norell likes this.

Share This Page