SSL - After an atempt to get ssl on the ISPConfig panel I got stuck See below

Discussion in 'Installation/Configuration' started by EckyBrazzz, Jan 28, 2018.

  1. EckyBrazzz

    EckyBrazzz Member

    First I installed let's encrypt with apt-get and the second time with certbot
    Now it is broken, sites are offline

    Plugins selected: Authenticator nginx, Installer nginx
    Obtaining a new certificate
    Performing the following challenges:
    http-01 challenge for XXXXXXXXXXX.com
    http-01 challenge for www.tXXXXXXXXXXXXXXXXXXt.com
    Using default address 80 for authentication.
    Using default address 80 for authentication.
    Waiting for verification...
    Cleaning up challenges
    Could not open file: /etc/nginx/sites-enabled/100-XXXXXXXXXXXXXXXX.com.vhost
    Could not open file: /etc/nginx/sites-enabled/default
    Could not open file: /etc/nginx/sites-enabled/100-tXXXXXXXXXXXX.xxxy.vhost
    Could not open file: /etc/nginx/sites-enabled/000-apps.vhost
    Could not open file: /etc/nginx/sites-enabled/100-XXXXXXXXXXXXX.com.br.vhost
    Could not open file: /etc/nginx/sites-enabled/000-ispconfig.vhost
    Could not open file: /etc/nginx/sites-enabled/100-XXXXXXXXXXXXXXXt.com.vhost
    Could not open file: /etc/nginx/sites-enabled/default
    Could not open file: /etc/nginx/sites-enabled/100-tXXXXXXXXXXXXXXXX.vhost
    Could not open file: /etc/nginx/sites-enabled/000-apps.vhost
    Could not open file: /etc/nginx/sites-enabled/100-XXXXXXXXXXXXXXXXbr.vhost
    Could not open file: /etc/nginx/sites-enabled/000-ispconfig.vhost
    Could not automatically find a matching server block. Set the `server_name` directive to use the Nginx installer.

    IMPORTANT NOTES:
    - Unable to install the certificate
    - Congratulations! Your certificate and chain have been saved at:
    /etc/letsencrypt/live/xxxxxxxxxxxx.com-0001/fullchain.pem
    Your key file has been saved at:
    /etc/letsencrypt/livexxxxxxxxxxxx.com-0001/privkey.pem
    Your cert will expire on 2018-04-28. To obtain a new or tweaked
    version of this certificate in the future, simply run certbot-auto
    again with the "certonly" option. To non-interactively renew *all*
    of your certificates, run "certbot-auto renew"
    [email protected]:~#]

    I tried to do a reinstall of the apt-get but no result.
     
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    Check if there are any vhosts with -le in file name in /etc/nginx/sites-enabled/ and remove them. Next time do not try to create LE certs on the shell, use the LE function in ISPConfig.
     

Share This Page