Solve DirectAdmin invalid SSL error on login page using LetsEncrypt

mbsmt · Mar 9, 2016

Hi everybody.
As you know, by enabling SSL for DA login page, we get invalid SSL error. Is there any way to use SSL issued by LetsEncrypt on DirectAdmin to solve this problem? Does DA let us to do something like this?

smtalk · Mar 9, 2016

Please check http://help.directadmin.com/item.php?id=15 (Part: Using the free "Let's Encrypt" tool to secure 2222).

Active8 · Mar 9, 2016

smtalk said:
Please check http://help.directadmin.com/item.php?id=15 (Part: Using the free "Let's Encrypt" tool to secure 2222).

Ok , what will be happens when a user try to login via his website ? example

server.server.com:2222 works because we generate a certificate for the server name this works but what will be happens if the user wants to login as user website.com:2222 ? will it be automatically forwarded to server.server.com:2222 ?

mbsmt · Mar 9, 2016

smtalk said:
Please check http://help.directadmin.com/item.php?id=15 (Part: Using the free "Let's Encrypt" tool to secure 2222).

Thank you smtalk for replying to my question. I've done what is mentioned in that link completely and certificate installed successfully. But again I give invalid SSL error both on using server_ip:2222 and domain:2222

ricardo777 · Mar 10, 2016

We use: http://www.directadmin.com/features.php?id=917 for a redirect

mbsmt · Mar 10, 2016

ricardo777 said:
We use: http://www.directadmin.com/features.php?id=917 for a redirect

But we don't like to change URL entered by user into hostname. We prefer to show server IP or user's domain address.

zEitEr · Mar 12, 2016

Let's Encrypt certs does not allow specify IP

https://community.letsencrypt.org/t/certificate-for-public-ip-without-domain-name/6082

As for domain access you might want to try to list all the existing domains from your server into one cert.

mbsmt · Apr 13, 2016

smtalk said:
Please check http://help.directadmin.com/item.php?id=15 (Part: Using the free "Let's Encrypt" tool to secure 2222).

smtalk, I tested what is said in this link. But I got this error:

{"type":"urn:acme:error:invalidEmail","detail":"DNS problem: NXDOMAIN looking up MX for my.hostname.com"}

By the way, I've changed 2222 to something else. Is it causing that error?

MauriceO · Jun 27, 2016

I got the following error when following the step for Using the free "Let's Encrypt" tool to secure 2222 on http://help.directadmin.com/item.php?id=15:

> ./letsencrypt.sh request <host> 4096
Setting up certificate for a hostname: <host>
Getting challenge for <host> from acme-server...
User let's encrypt key has been found, but not registered. Registering...
Account registration error. Response: HTTP/1.1 100 Continue
Expires: Mon, 27 Jun 2016 16:02:19 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: application/problem+json
Content-Length: 144
Boulder-Request-Id: nUZaDe9YR1QtNImi459vEoRcwrbRZV6WBRjlMqKx-QU
Replay-Nonce: VU4rTmLXSJULXwc3bAtzW4BnSCXCQXEohPkh6yjfcCA
Expires: Mon, 27 Jun 2016 16:02:19 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 27 Jun 2016 16:02:19 GMT
Connection: close

{
"type": "urn:acme:error:invalidEmail",
"detail": "DNS problem: NXDOMAIN looking up MX for <host>",
"status": 400
}.

conconnl · Jul 13, 2016

Can someone give an answer?
I have the same issues.

Complete new server.
Followed: http://help.directadmin.com/item.php?id=405 for Hostname configuration
Followed: http://help.directadmin.com/item.php?id=15 for LetsEncrypt Certificate

And I get the same error about MX DNS Problem.
Have even waited 24 hours to be sure that the DNS is fully propagated.

SevereNL · Aug 3, 2016

Since yesterday we have a sort alike problem.
On all our DirectAdmin servers we encounter the following problem
(while it was working two days ago, no changes to the servers have been made)
DirectAdmin version: 1.50.1
OS: CentOS 7.0 64Bit

What is see is: Last Updated Mon Aug 1 05:07:02 2016 under license values

Cannot Execute Your Request

Details

Getting challenge for <domain> from acme-server...
User let's encrypt key has been found, but not registered. Registering...
Account registration error. Response: HTTP/1.1 100 Continue
Expires: Wed, 03 Aug 2016 08:57:02 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: application/problem+json
Content-Length: 265
Boulder-Request-Id: soEpYUO5WO657F4ie9A0Q3yt7POMZwmP7JNYSf3cqQg
Replay-Nonce: OyWxmSh1HmVogVLCYVB-yeNx5sajoeK1T8tw8ekPuRY
Expires: Wed, 03 Aug 2016 08:57:03 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 03 Aug 2016 08:57:03 GMT
Connection: close
{
"type": "urn:acme:error:malformed",
"detail": "Provided agreement URL [https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf] does not match current agreement URL [https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf]",
"status": 400
}.

mbsmt · Aug 3, 2016

Take a look at my last question : https://forum.directadmin.com/showthread.php?t=53567

Solve DirectAdmin invalid SSL error on login page using LetsEncrypt

mbsmt

Verified User

smtalk

Administrator

Active8

Verified User

mbsmt

Verified User

ricardo777

Verified User

mbsmt

Verified User

zEitEr

Super Moderator

mbsmt

Verified User

MauriceO

Verified User

conconnl

Verified User

SevereNL

New member

mbsmt

Verified User