Questions tagged [lets-encrypt]

Let's Encrypt is a certificate authority that provides free X.509 certificates for TLS encryption.

Let's Encrypt is a certificate authority that entered public beta on December 3, 2015 that provides free X.509 certificates for Transport Layer Security encryption (TLS) via an automated process designed to eliminate the current complex process of manual creation, validation, signing, installation and renewal of certificates for secure websites.

An Python certificate management program called letsencrypt gets installed on the client side (the web server of an enrollee). This is used to order the certificate, to conduct the domain validation process, to install the certificate, to configure the HTTPS encryption in the HTTP server, and later to regularly renew the certificate.

After installation and agreeing to the user license, executing a single command is enough to get a valid certificate installed. Additional options like OCSP stapling or HTTP Strict Transport Security (HSTS) can also be enabled. Automatic setup initially only works with Apache and nginx.

Source: Wikiepdia

822 questions

votes

1 answer

Certbot unauthorized and connection errors

I have a spring boot application on Google Cloud, CentOS 7. I wish to install SSL certificate via Let's Encrypt and Certbot. When I use certbot --apache -d mydomain.zone command I receive an error: My domain is registered on Namecheap. My A records…

lets-encrypt certbot

asked Feb 15 '22 at 19:44

LosmiNCL

votes

0 answers

Letsencrypt certificate works only internally to the instance, but when queried externally cert is not valid anymore

I have one instance on Heroku with a auto generated certificate for mysite.com I have created a EC2 instance on AWS and generated a letsencrypt certificate for api.mysite.com From the EC2 instance, if I execute curl https://api.mysite.com/ I get…

nginx ssl lets-encrypt

asked Feb 13 '22 at 08:31

Vincent Teyssier

votes

1 answer

Nginx not listening on new ports with systemctl reload nginx after adding config with a new port

Not sure how to quickly summary this issue, so I will put my scenario in bulletpoints: Normal basic nginx install I only use https(443), so I removed all http(80) config When you start nginx (or restart it), the process seems to listen on port 80…

linux nginx lets-encrypt certbot

asked Jan 31 '22 at 22:42

Jesse

votes

1 answer

HTTPS for intranet website

My situation is, I have a server running inside a home network which can be connected from the outside through VPN (Zerotier). This network connected to the internet through NAT, thus there is no real public IP. Now there are some services that…

ssl ssl-certificate https lets-encrypt intranet

asked Jan 30 '22 at 12:40

Wutipong Wongsakuldej

votes

1 answer

i/o timeout when trying to renew letsencrypt certificate

I am running a webserver using caddy 1, which is supposed to renew https certificates automatically using letsencrypt but is having trouble doing so. In the server's logs I see this: 2022/01/14 04:03:47 [ERROR] Making new certificate manager: get…

ubuntu domain-name-system https lets-encrypt caddy

asked Jan 14 '22 at 04:11

Nothingbetter

votes

2 answers

Have godaddy point to specific path on custom ip

I have an ec2 machine running nginx. It has a lot of projects and typically I access it via: https://ai.mydomain.com/myproject One of these projects is spinning out to be separate. Assuming the ip was xxx.yyy.aaa.bbb, how would I get the godaddy to…

hosting lets-encrypt dns-hosting

asked Dec 30 '21 at 15:39

user1357015

votes

1 answer

How to stop Let'sEncrypt checking my domain for acme-challenge

Sorry if this question already asked before, but I can't found solution for my issue. Previously I have site on Webmin server and use Let'sEncrypt SSL for the domain. Now, I moved my site to Google Cloud Run. But the Let'sEncrypt engine keep check…

lets-encrypt

asked Dec 18 '21 at 02:52

Zemmy Indrapatih

votes

1 answer

Why does Traefik renew with the expired Let's Encrypt certificate path?

We run Ubuntu Server 20.04 LTS with a Traefik Docker container. Back in September when the Let's Encrypt DST Root CA X3 certificate expired we didn't really find much actual information on how to remedy this but eventually got it working again by…

ubuntu ssl-certificate lets-encrypt

asked Dec 10 '21 at 07:40

Steffen

votes

1 answer

Is that possible to encrypt the traffic which is between internal webservers by using Load Balancer

I am currently using Let's Encrypt to obtain server certificates for approximately 100+ backend servers. Every 90 days I have to work with other teams to renew my certs via the DNS-01 challenge. I found a solution about Load Balancer that sounds…

ssl load-balancing https haproxy lets-encrypt

asked Dec 07 '21 at 07:40

ITnewbie

votes

1 answer

SSL certificate - conflicting expiry dates

I am experiencing a weired issue regarding a letsencrypt SSL certificate on my postfix mail server. According to certbot: "The following certs are not due for renewal yet: /etc/letsencrypt/live//fullchain.pem expires on 2022-01-31 (skipped)" (If i…

ssl postfix dovecot lets-encrypt

asked Dec 02 '21 at 14:16

randmin

votes

1 answer

How can I tell if wget can support LetsEncrypt's new ISRG Root X1 certificate after DST Root CA X3 Expiration

A few weeks ago (Sept 2021), LetsEncrypt changed how their certificates were signed, which can affect some older programmes and clients. I have a standard Apache webserver (stock v2.4.41 from ubuntu 20.04 apt) with several letsencrypt certs. Some…

lets-encrypt wget

asked Oct 26 '21 at 13:35

Amandasaurus

31,471
65
192
253

votes

2 answers

Log the ssl certificate that apache is using for each SSL connection, for enhanced loging & debugging

I have an apache web server, with mod_ssl & SSL certificates from letsencrypt. certbot reports they are fine and not expiring. A few different (of my many users) report that they get invalid/expired SSL certs from the server (and I have see output…

ssl apache-2.4 logging lets-encrypt

asked Oct 26 '21 at 09:58

Amandasaurus

31,471
65
192
253

votes

0 answers

Nginx: Reverse Proxy to Docker Container with SSL

On my Ubuntu (20) server I have a Docker container running on port 3000. I have now installed NGINX on the server and point a domain via a reverse proxy to the Docker container. server { listen 80; server_name sub.domain.com; location /…

nginx ssl docker lets-encrypt certbot

asked Oct 11 '21 at 16:17

Jonas

votes

1 answer

DST Root CA X3 has expired

I have configured shadowsocks-rust with xray plugin using certificate from acme. Works fine on all devices except android 7. I understand that this is due to the fact that the DST Root CA X3 certificate has recently expired. Is there any solution…

linux vpn lets-encrypt android

asked Oct 02 '21 at 04:53

aydogdy

votes

1 answer

SSL certificate issues on a Windows machine

There are 11 Windows 10 computers in the office but the following issue only happens on one of them. When accessing some sites in any installed browser (Edge, Chrome and Opera) the browser tells that the SSL certificate of the website is expired or…

windows ssl-certificate lets-encrypt

asked Oct 01 '21 at 15:17

Ciprian Stoica

Prev 1 2 3

…

54 55 Next