https not working for directadmin 2222 (after successful letsencrypt)

flexjoly

flexjoly

Verified User
Joined
Nov 2, 2016
Messages
89
Location
Apeldoorn, Netherlands
Hi,

We are configuring a new server for wordpress on centos8.

I think I miss something here, but I cannot get the https://hostname::2222 to work.

running:
Code: 
/usr/local/directadmin/scripts/letsencrypt.sh request_single <hostname> 4096

with result:
Code: 
Setting up certificate for a hostname: ******
Requesting new certificate order...
Processing https://acme-v02.api.letsencrypt.org/acme/authz-v3/*****...
Processing authorization for ******...
Challenge is valid.
Generating 4096 bit RSA key for ******...
openssl genrsa 4096 > "/usr/local/directadmin/conf/cakey.pem.new"
Generating RSA private key, 4096 bit long modulus (2 primes)
...........................................................................................................................++++
....................................................................................................++++
e is 65537 (0x010001)
Checking Certificate Private key match... Match!
DirectAdmin certificate has been setup.
Setting up cert for Exim...
Setting up cert for WWW server...
Setting up cert for FTP server...
The services will be restarted in about 1 minute via the dataskq.

Certificate for ***** has been created successfully!

Even put: enable_ssl_sni=1 in directadmin.conf

Even rebooted the server.... but https is still not working for DA on 2222.
The same url with http does work.

What am I missing?
Thanks in advance!
flexjoly
 
in directadmin.conf do you have
ssl=1
force_hostname=fqdn
ssl_redirect_host=fqdn

then
systemctl restart directadmin
 
Thanks for your quick replies!!

Indeed ssl was 0....
I expected that ssl was enabled by default!
Strange that that is not the case. Maybe DA can change this, for not using ssl, is not recommended anymore.

Greetz, flexjoly
 
flexjoly said:
Thanks for your quick replies!!

Indeed ssl was 0....
I expected that ssl was enabled by default!
Strange that that is not the case. Maybe DA can change this, for not using ssl, is not recommended anymore.

Greetz, flexjoly
Click to expand...
Glad it helped
Nope, not default... yet
 
It's already planned for one of the future versions.

Auto SSL feature like cPanel - Feature requests - DirectAdmin Feedback

It would be nice if there would be an autoSSL feature (maybe switchable for packages) because SSL is almost always needed these days. Auto SSL does like run a nightly cronjob and see which new domains are created. For these domains an SSL certificate is
feedback.directadmin.com feedback.directadmin.com
 
How would it be default? When you setup.sh, the admin's email address isn't (necessarily) a FQDN, especially when you use auto and the licence has no hostname set.....

Or you mean, it'll just use the self-signed cert on install?
 
bdacus01 said:
You wouldn't use auto. You put in the FQDN when you install DA. So it would create LE ssl on install.
Click to expand...
Unless the reseller gave you the wrong Client ID, auto is your only option. See here. I was trying to save a few pounds.

(Their support sucks, 24hours for each reply to a ticket...... Took me a week to set up a server!)
 
Peter Laws said:
(Their support sucks, 24hours for each reply to a ticket...... Took me a week to set up a server!)
Click to expand...
That's not everything. LoL, wait until your harddisk crashes just past 17.00 hours on friday, you can wait till monday before it will be replaced. Unless you pay a bunch extra for SLA. It's typical there.
 
Richard G said:
That's not everything. LoL, wait until your harddisk crashes just past 17.00 hours on friday, you can wait till monday before it will be replaced. Unless you pay a bunch extra for SLA. It's typical there.
Click to expand...
Oh, believe me, I've had that a few years ago. Sadly it didn't have RAID.......Now, any server I get is set in RAID.

I've used OVH since 2008, and that HD crash is the only major issue I had. But, you get what you pay for I suppose.
 
Code: 
NOTE The hostname value, eg: your.hostname.com must match the "servername" value set in the directadmin.conf, or it will not be in hostname mode, but User domain mode instead.

Try check this
 
Peter Laws said:
Oh, believe me, I've had that a few years ago. Sadly it didn't have RAID.......Now, any server I get is set in RAID.
Click to expand...
Oh we also have raid on every server, but in that particular case we didn't as we first wanted to test the OVH server, so almost no accounts on it luckily.

Peter Laws said:
But, you get what you pay for I suppose.
Click to expand...
We didn't order the cheapest, but we did not order a seperate SLA, we didn't even know that existed. As said, for the same price with Hetzner, no extra sla needed, and great hardware service.
Anyway, we're getting off-topic a bit I guess.
 
You must log in or register to reply here.
Back
Top