Questions tagged [lets-encrypt]

Let's Encrypt is a certificate authority that provides free X.509 certificates for TLS encryption.

Let's Encrypt is a certificate authority that entered public beta on December 3, 2015 that provides free X.509 certificates for Transport Layer Security encryption (TLS) via an automated process designed to eliminate the current complex process of manual creation, validation, signing, installation and renewal of certificates for secure websites.

An Python certificate management program called letsencrypt gets installed on the client side (the web server of an enrollee). This is used to order the certificate, to conduct the domain validation process, to install the certificate, to configure the HTTPS encryption in the HTTP server, and later to regularly renew the certificate.

After installation and agreeing to the user license, executing a single command is enough to get a valid certificate installed. Additional options like OCSP stapling or HTTP Strict Transport Security (HSTS) can also be enabled. Automatic setup initially only works with Apache and nginx.

Source: Wikiepdia

822 questions

votes

1 answer

Nginx emergency: cannot load certificate "/etc/letsencrypt/live/mail.example.com/fullchain.pem". How to fix this Nginx error?

I am running a LEMP email/web server with Ubuntu 20.04. My Nginx user is www-data. I also have roundcube installed in /var/www/roundcube. In my Nginx logs, I am getting the following error: 2023/07/01 00:00:18 [emerg] 337875#337875: cannot load…

nginx ubuntu lets-encrypt

asked Jul 02 '23 at 03:36

DanRan

votes

0 answers

Trouble loading wildcard SSL that uses the hostname

I have a wildcard SSL cert from Let's Encrypt, the installation has worked and when accessing a sub-domain the cert loads properly. However the virtual site (Apache) that has no subdomain produces an error: [Wed Jun 28 15:21:18.823772 2023]…

linux apache-2.2 ssl-certificate lets-encrypt

asked Jun 28 '23 at 16:05

Kline

votes

1 answer

How to generate SSL certificate on windows machine for use with IIS?

I come from Linux background and have previously hosted websites on nginx. I use certbot to create and install SSL certificate. I'm trying my hands-on Windows IIS, I have deployed a website on IIS. Now to add a SSL to my website I'm trying to use…

iis lets-encrypt certbot

asked Jun 28 '23 at 14:51

variable

votes

1 answer

LetsEncrypt/Certbot Domain Verification with Redirect

Is it possible to 301 redirect from abc.com to a different domain xyz.com during cert creation/validation with certbot and complete the domain verification via xyz domain? This question was asked in letsencrypt forum already, and the answer was…

lets-encrypt certbot

asked Jun 23 '23 at 07:51

archygriswald

votes

2 answers

Is letsencrypt registration email address stored in certificate

I'm using letsencrypt in two ways: a docker stack using certbot, and another using traefik (which performs certificate management automatically, using lego). In both cases there's a setting for the registration email address. Is that email address…

ssl-certificate lets-encrypt certificate-authority certbot traefik

asked Jun 03 '23 at 00:56

lonix

votes

0 answers

Best way to trigger host to restart a docker container from inside another docker container?

I have a docker container that manages all of the SSL certificates for my services with Letsencrypt. When the certificate for a certain service is renewed, a post-hook script copies the certificate and key to the folder where the SSL certificate and…

linux ubuntu docker lets-encrypt docker-compose

asked May 31 '23 at 14:42

lriley

votes

1 answer

Traefik as reverse proxy with certbot / lego

When setting up a server I use a reverse proxy and acme tool for dns01 support (I use either nginx + certbot or nginx + lego). I want to start using traefik instead. I don't understand how traefik interacts with certbot (or lego, etc.), and I can't…

nginx reverse-proxy lets-encrypt certbot traefik

asked May 27 '23 at 14:12

lonix

votes

0 answers

"wildcard" ssl certificate for all domains pointing to nginx server

I have a nginx server with the following (simplified) server block: server { listen 80; server_name _; location / { root /var/www/html; index index.html; } } Every domain name that has an A-record to my server has…

nginx ssl lets-encrypt

asked May 21 '23 at 14:43

Sam Leurs

votes

1 answer

Post Fedora Server upgrade to FC38, Apache httpd server no longer honors Lets Encrypt keys

The environment has twins of virtually everything, including two web server / firewall / gateway systems, and they were getting long-in-the-tooth version wise, so I decided to upgrade from Fedora Server 30 to 38 on one of them. My timing was curious…

httpd lets-encrypt fedora-server fedora-38

asked May 21 '23 at 01:17

Richard T

1,206
12
29

votes

1 answer

LDAP replication to server with Let's Encrypt certificate fails, "unable to get issuer certificate"

I am currently trying to set up LDAP replication between to instances of 389 Directory Server (both running on Fedora 37), which I'll call $SUPPLIER and $CONSUMER in the following (serving at the domains supplier.mydomain.example and…

ssl ldap lets-encrypt 389-ds

asked May 16 '23 at 18:40

TuringTux

votes

0 answers

Letsencrypt + HAProxy SSL Offloading

I am using HAProxy for SSL offloading and letsencrypt certificates. Previously, I was using the tls-sni-01-port flag - which is no longer supported. Does anyone have a recipe that has been working in this configuration?

haproxy lets-encrypt certbot

asked May 15 '23 at 13:57

Aaron A

votes

0 answers

Auto renew LetsEncrypt cert with nginx under Docker

I'm having troubles setting up a auto renew for LetsEncrypt certificates. I run nginx under Docker container that serves Django application. Here is my docker-compose file: version: '3.8' services: app: image: registry.myimage.app …

nginx docker ssl-certificate lets-encrypt certbot

asked May 14 '23 at 09:29

popcorn

votes

0 answers

wget doesn't accept HTTPS certificate (from letsencrypt) on some computers but does on others

I have the following situation: On my www server (Apache2, Debian armhf) I have HTTPS certificate from letsencrypt.org by certbot. When accessing the server from a browser (Firefox, Chromium) everything was fine, but when I tried git or wget then…

apache-2.4 ssl-certificate lets-encrypt certbot wget

asked May 12 '23 at 00:52

bicyclesonthemoon

votes

1 answer

certifcate not valid, but certbot says it is

https://licoriceicecream.com/ : expires Monday, 1 May 2023 at 14:43:01 but sudo certbot renew Processing /etc/letsencrypt/renewal/licoriceicecream.com.conf - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Certificate…

ssl-certificate lets-encrypt

asked May 02 '23 at 06:21

NimChimpsky

votes

1 answer

Generate SSL certificate with let's encrypt (dns-01 challenge)

I'm trying to generate an SSL certificate with Ansible for *.rasp.example.com and rasp.example.com. I already have a "working" solution (No errors when deploying), but when I try to compare it with certbot, I have some csr, crt, key whereas certbot…

ssl ansible lets-encrypt

asked Apr 21 '23 at 19:28

tholeb

Prev 1 2 3

…

54 55 Next