SSL oopsie

[Mister Stillwaters]

This is my first post and I'm new to DirectAdmin, so please go easy. I was trying to set up the admin user/default domain. The registrar has an origin server certificate. I deleted the one that was automatically generated (because there's no option to add a new one then set a defaut) and tried to add the one from the registrar. It said the certificate is invalid for some reason. I went to "Get Automatic Certificate" for a temporary fix and now it says "Domain is already processing an SSL request. Please allow it to finish before making other changes." This has been the status for several hours. I'm guessing they think/know they already issued one automatically and will not honor the request. Surely DirectAdmin doesn't request a certificate automatically without approval under the default settings, then let's you delete it without a way to recover, right?

 

[zEitEr]

Hello,

I'm not quite sure what you're asking about, though I've read your post several times. Your default settings might differ from my default settings. So first of all you would need to clarify, how did you install Directadmin. Was it a VM with a pre-installed DirectAdmin? Or you completed the installation by yourself?

Whatever your settings might be, directadmin can trigger an automated certificate installation, depending on its settings. And servers might have the different settings (so called by default), depending on how directadmin was installed.

More details: https://docs.directadmin.com/webservices/ssl/automatic-ssl-certificates.html

 

[Mister Stillwaters]

Hello,

I'm not quite sure what you're asking about, though I've read your post several times. Your default settings might differ from my default settings. So first of all you would need to clarify, how did you install Directadmin. Was it a VM with a pre-installed DirectAdmin? Or you completed the installation by yourself?

Whatever your settings might be, directadmin can trigger an automated certificate installation, depending on its settings. And servers might have the different settings (so called by default), depending on how directadmin was installed.

More details: https://docs.directadmin.com/webservices/ssl/automatic-ssl-certificates.html

I did the installation by SSH pulls. It seems the software automatically gets a license key for the default domain before I've ever even changed it to the actual domain name. This is problematic.

I was finally able to get a new certificate, but it took days. Perhaps there is no request timeout function, or LetsEncrypt had already hit its limit for a certain time period. I'm not sure, but the default setting really should be to manually enter a key. If someone wants to turn on automatic key requests, that should not be the default.

I did find out the registrar key wasn't working because it's from CloudFlare, so that was apparently a separate issue.

 

[zEitEr]

I believe you should run a custom installation as mentioned here:

- https://docs.directadmin.com/gettin...ning-the-installation-with-predefined-options

The link to the custom installation can be found on the page with installation instructions:

- https://docs.directadmin.com/getting-started/installation/installguide.html