Questions tagged [lets-encrypt]

Let's Encrypt is a certificate authority that provides free X.509 certificates for TLS encryption.

Let's Encrypt is a certificate authority that entered public beta on December 3, 2015 that provides free X.509 certificates for Transport Layer Security encryption (TLS) via an automated process designed to eliminate the current complex process of manual creation, validation, signing, installation and renewal of certificates for secure websites.

An Python certificate management program called letsencrypt gets installed on the client side (the web server of an enrollee). This is used to order the certificate, to conduct the domain validation process, to install the certificate, to configure the HTTPS encryption in the HTTP server, and later to regularly renew the certificate.

After installation and agreeing to the user license, executing a single command is enough to get a valid certificate installed. Additional options like OCSP stapling or HTTP Strict Transport Security (HSTS) can also be enabled. Automatic setup initially only works with Apache and nginx.

Source: Wikiepdia

822 questions

votes

0 answers

no ssl configured for the server in OpenResty server

We switched from nginx to openresty just so we could use the lua-resty-auto-ssl plugin to generate SSL certs on the fly for user-owned domains they can plug into our system. Our main site was still using certs generated by certbot but it seems this…

asked Nov 23 '20 at 16:55

dabadaba

votes

0 answers

How to host two websites on one AWS lightsail instance

I'm quite new to this whole website thing and I'm looking for some guidance on how to configure bitnami apache so I can have two websites on the same server. I have a domain (which i'll call example.com) using route53 and pointed it to my lightsail…

amazon-web-services apache2 subdomain lets-encrypt amazon-lightsail

asked Nov 19 '20 at 17:49

dangee1705

votes

0 answers

ERR_TUNNEL_CONNECTION_FAILED for my website after installing new SSL certificate

My website groceryshoptest.com was hosted in Digital Ocean droplets with a Nginx server. I've used free SSL from Lets encrypts certbot, I've just put few commands which added some configuration in etc/nginx/sites-available/groceryshoptest file and…

nginx ssl ssl-certificate hosting lets-encrypt

asked Nov 10 '20 at 16:54

Shahrear Bin Amin

votes

0 answers

DNS query timed out looking up A for mydomain

I am try to use let's Encrypt on Plesk and error 400 appears with [Detail: DNS problem: query timed out looking up A for mydomain][1]

ssl lets-encrypt plesk

asked Oct 27 '20 at 11:40

Hazoomo

votes

1 answer

certbot --apache uses wrong domain name but claims to use the right one

I am running a website with apache on RHEL7 on the domain https://www.ayeaye.at. I am using certbot to obtain a certificate. The webserver works, I get a proper certificate for domain, and certbot tells me that it is installed and working, but when…

apache-2.4 lets-encrypt certbot self-signed-certificate mozilla

asked Oct 21 '20 at 14:56

farbenrausch

votes

1 answer

Cannot setup a reverse proxy with Nginx

I'm trying to display my NodeJS application when the user type a specific domain. I already pointed the domain on the server, then I've installed Nginx and I have created a configuration file into: /etc/nginx/conf.d/myapp.conf this have the…

ubuntu nginx node.js lets-encrypt

asked Oct 17 '20 at 15:42

sfarzoso

votes

0 answers

Apache is serving SSL when its not in the vhost configuration

We have multiple sites in our apache configuration. All of these sites are defined in their own vhost. However we have a site that is served on SSL when it is not defined in our VHOSTS: Here is the output of apachectl -S VirtualHost…

amazon-web-services ssl apache-2.4 lets-encrypt debian-buster

asked Oct 13 '20 at 15:58

Brian Herman

votes

2 answers

Renew ssl cert but only have private key and fullchain file

Is it possible to renew certs from letsencrypt with just the private key and fullchain file? If not, can one just remove all the letsencrypt files and .well-known directory and apply for new certification using certbot or other programs? Or would I…

lets-encrypt ssl-certificate-renewal

asked Oct 12 '20 at 15:24

Rob

votes

0 answers

Caddy "CSR doesn't contain a SAN short enough to fit in CN"

The Common Name (CN) in a TLS certificate is documented to have a limit of 64 chars. The trick when issuing a cert for a so long subdomain is to set the CN to something else (shorter) and have the certificate to certify multiple domains, as the…

ssl lets-encrypt limits caddy

asked Oct 02 '20 at 09:56

Xavi Montero

votes

3 answers

Certbot renew dry run fails with error: Input the webroot for sub.mydomain.com:. Skipping

I have a Debian 10 instance running which hosts my Node.js/Express API. I have been using a different subdomain during development and added another subdomain as I'm nearing production. The first domain was dev.myapi.com and I added another…

https lets-encrypt certbot

asked Sep 30 '20 at 09:20

VaibhavJoshi

votes

1 answer

LetsEncrypt - force X4 root in chain before it becomes default

As part of working on a brand new API, we use LetsEncrypt for generating ssl certificates. LetsEncrypts current root CA (the "...X3"-version expires at september 2021). They originally planned on making the X4 the default as of september 29 2021…

lets-encrypt

asked Sep 30 '20 at 08:37

Stephan Møller

votes

1 answer

Unable to generate SSL certificate using letsencrypt

I am trying to generate an SSL certificate for a subdomain that was purchased using Wordpress. Both the domain and subdomain were purchased from Wordpress. For the subdomain created using Wordpress, I have created a A record with IP pointing to some…

ssl wordpress cname-record lets-encrypt aname-record

asked Sep 29 '20 at 10:31

Amanda

votes

1 answer

nginx connection refused remotely but localhost connects

I have a strange problem with my Ubuntu Server 20.04 LTS Brief Background: I installed nginx and have been having alot of trouble with setting up letsencrypt. Attempting this with a statically served file, it continuously said the connection was…

ubuntu nginx lets-encrypt linode ubuntu-20.04

asked Sep 28 '20 at 04:09

CybeX

votes

1 answer

Lighttpd proxy, and letsencrypt renewal

I need some help on this subject. I have many domains in the same lighttpd config, and I will move to letsencrypt cert, so I'm simulating on a dummy server. I have the following: $HTTP["url"] !~ "^/.well-known/acme-challenge/.*$" { …

lets-encrypt lighttpd

asked Sep 10 '20 at 13:28

Pedro Padilha

votes

1 answer

Nginx config for large WordPress Multisite utilizing Let's Encrypt

Large WordPress Multisite install of over 150+ domains with anticipation of going 900+. I want to simplify the nginx server config. Currently we have to split the server list to groups of 100 due to Let's Encrypt limit of 100 per ssl cert. This is…

nginx wordpress lets-encrypt

asked Sep 09 '20 at 11:42

user50733

Prev 1 2 3

…

54 55 Next