DutchProgrammer
Verified User
- Joined
- Oct 14, 2012
- Messages
- 15
On default directadmin isn't adding the domain pointers to the san_config.
So what i've tried to fix this is adding my domain pointers (with and without www.) to my san_config (/usr/local/directadmin/data/users/username/domains/mainDomain.ext.san_config)
When im trying to execute letsencrypt.sh (as root):
./letsencrypt.sh renew mainDomain.ext 4096
it fails on the challenge because it cannot be accessed by web, the strange thing is when i request the certificate in directadmin it can access the challenge by web and the domain cert is successfully added
The only problem is that directadmin is executing letsencrypt.sh differently with a security file that overwrites my san_config:
#Overwrite san_config file if csr_cf_file path is different
if [ "${CSR_CF_FILE}" != "" ] && [ "${CSR_CF_FILE}" != "${SAN_CONFIG}" ]; then
cp -f ${CSR_CF_FILE} ${SAN_CONFIG}
fi
In this csf_cf_file directadmin is adding the same domains thing only without domain pointers when i add my domain pointers again to the san_config file and uncomment the above rows in letsencrypt.sh its working:
#Overwrite san_config file if csr_cf_file path is different
#if [ "${CSR_CF_FILE}" != "" ] && [ "${CSR_CF_FILE}" != "${SAN_CONFIG}" ]; then
# cp -f ${CSR_CF_FILE} ${SAN_CONFIG}
#fi
this is a hack to manually add domain pointers to my certificate.
I would like to see that directadmin will add the domain pointers by default (with www. and not www. per domain pointer).
like mainDomain.ext.san_config:
[ req ]
default_bits = 4096
default_keyfile = keyfile.pem
distinguished_name = req_distinguished_name
attributes = req_attributes
prompt = no
output_password = bogus
[ req_distinguished_name ]
C = NL
ST = Country
L = Place
O = Company
OU = Company Division
CN = Common Name
emailAddress = [email protected]
[ req_attributes ]
[ SAN ]
subjectAltName=DNS:mainDomain.nl, DNS:www.mainDomain.nl, DNS:mainDomain.be, DNS:www.mainDomain.be, DNS:mainDomain.fr, DNS:www.mainDomain.fr, DNS:mainDomain.eu, DNS:www.mainDomain.eu, DNS:mainDomain.co.uk, DNS:www.mainDomain.co.uk
Hope this feature(/bug) can be fixed
Thanks
So what i've tried to fix this is adding my domain pointers (with and without www.) to my san_config (/usr/local/directadmin/data/users/username/domains/mainDomain.ext.san_config)
When im trying to execute letsencrypt.sh (as root):
./letsencrypt.sh renew mainDomain.ext 4096
it fails on the challenge because it cannot be accessed by web, the strange thing is when i request the certificate in directadmin it can access the challenge by web and the domain cert is successfully added
The only problem is that directadmin is executing letsencrypt.sh differently with a security file that overwrites my san_config:
#Overwrite san_config file if csr_cf_file path is different
if [ "${CSR_CF_FILE}" != "" ] && [ "${CSR_CF_FILE}" != "${SAN_CONFIG}" ]; then
cp -f ${CSR_CF_FILE} ${SAN_CONFIG}
fi
In this csf_cf_file directadmin is adding the same domains thing only without domain pointers when i add my domain pointers again to the san_config file and uncomment the above rows in letsencrypt.sh its working:
#Overwrite san_config file if csr_cf_file path is different
#if [ "${CSR_CF_FILE}" != "" ] && [ "${CSR_CF_FILE}" != "${SAN_CONFIG}" ]; then
# cp -f ${CSR_CF_FILE} ${SAN_CONFIG}
#fi
this is a hack to manually add domain pointers to my certificate.
I would like to see that directadmin will add the domain pointers by default (with www. and not www. per domain pointer).
like mainDomain.ext.san_config:
[ req ]
default_bits = 4096
default_keyfile = keyfile.pem
distinguished_name = req_distinguished_name
attributes = req_attributes
prompt = no
output_password = bogus
[ req_distinguished_name ]
C = NL
ST = Country
L = Place
O = Company
OU = Company Division
CN = Common Name
emailAddress = [email protected]
[ req_attributes ]
[ SAN ]
subjectAltName=DNS:mainDomain.nl, DNS:www.mainDomain.nl, DNS:mainDomain.be, DNS:www.mainDomain.be, DNS:mainDomain.fr, DNS:www.mainDomain.fr, DNS:mainDomain.eu, DNS:www.mainDomain.eu, DNS:mainDomain.co.uk, DNS:www.mainDomain.co.uk
Hope this feature(/bug) can be fixed
Thanks
