Install letsencrypt error for hostname

V

vibol

Verified User
Joined
Jan 6, 2021
Messages
14
Hello

I follow https://help.directadmin.com/item.php?id=629 to install ssl for my hostname but i got the following error

/usr/local/directadmin/scripts/letsencrypt.sh request_single my.custom.hostname 4096
Click to expand...

Bash: 
Setting up certificate for a hostname: my.custom.hostname
Challenge pre-checks for http://my.custom.hostname/.well-known/acme-challenge/letsencrypt_1611302028 failed... Command:
/usr/bin/curl --connect-timeout 40 -k --silent --resolve my.custom.hostname:80:2602:ffc5:180:64::7326 --resolve my.custom.hostname:443:2602:ffc5:180:64::7326 -I -L -X GET http://my.custom.hostname/.well-known/acme-challenge/letsencrypt_1611302028

Anybody experience the same issue ?
 
I can't help while no openslitespeed knowledge.
But good for other support they know now. OS and versions good luck.

Maybe however while sub.sub.domainename ?? id don't know or this is supported by that script and DA
 
To be remark this working normally with other control panel. i don't know what the problem.

But the problem is letsencrypt don't write file to /var/www/html/.well-known/acme-callenge/ the folder return empty
 
I don't know litespeed someone else or @smtalk ?

Also "
If domain.com is already being used by LetsEncrypt but is created by the User in their SSL Certificates page, LetsEncrypt may throw an error, since we don't want to be managing the domain value in 2 different certs, hence I've just listed the mail.* domains for the extras... but you can use domain.com and www.domain.com here if you want, but then shouldn't be done at the User Level.
IMPORTANTall value you add must resolve to your server."
 
curl command mentioned fails. Why - it's hard to say without access. Firstly, please make sure you own 2602:ffc5:180:64::7326 and try executing curl command without --silent manually.
 
smtalk said:
curl command mentioned fails. Why - it's hard to say without access. Firstly, please make sure you own 2602:ffc5:180:64::7326 and try executing curl command without --silent manually.
Click to expand...

Sure this image show that my aaaa pointing to 2602:ffc5:180:64::7326 correctly


1611321072187.png
 
After setenforce to 0

Code: 
2021/01/22 13:19:56 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/10271959845
2021/01/22 13:19:56 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/10271959845
2021/01/22 13:19:56 Could not obtain certificates:
        error: one or more domains had a problem:
[sg1.server.konexdigital.com] acme: error: 400 :: urn:ietfarams:acme:error:connection :: Fetching http://sg1.server.konexdigital.com/.well-known/acme-challenge/oxWAw8gRt_0zq_5D_BuPpYxf3TiD5P_EcBHDMV3c-Nw: Error getting validation data, url:
Certificate generation failed.
 
Sorry everybody i found the root cause this is due to Firewalld and selinux

I do apologize for that. i don't know that fresh install of directadmin might not config or turn off all that thing.
 
vibol said:
Sorry everybody i found the root cause this is due to Firewalld and selinux

I do apologize for that. i don't know that fresh install of directadmin might not config or turn off all that thing.
Click to expand...
Please follow up here how you solved, the commands and so for others? ;)
 
it simple before generate letsencrypt for hostname first make sure firewalld and selinux is off by

Bash: 
# systemctl stop firewalld
# setenforce 0

That did the trick !
 
You must log in or register to reply here.
Back
Top