Stack Overflow
Stack Overflow

Questions tagged [lets-encrypt]

LET'S ENCRYPT QUESTIONS MUST BE PROGRAMMING RELATED. Let’s Encrypt is a free, automated, and open certificate authority provided by the Internet Security Research Group.

LET'S ENCRYPT QUESTIONS MUST BE PROGRAMMING RELATED. Let's Encrypt is a certificate authority that provides free X.509 certificates for Transport Layer Security encryption (TLS). It uses an automated process designed to eliminate the current complex process of manual creation, validation, signing, installation and renewal of certificates.

2023 questions
37
votes
3 answers

Certbot Apache error "Name duplicates previous WSGI daemon definition."

On my Ubuntu 16.04 server, I have an Apache conf file at /etc/apache2/sites-enabled/000-default.conf, which looks like this (abbreviated): WSGIApplicationGroup %{GLOBAL} ServerName example.com WSGIDaemonProcess myprocess…
Josh
  • 2,790
  • 26
  • 30
36
votes
7 answers

How do I use let’s encrypt with gitlab?

I started to look in to ssl certificates when I stumbled upon let's encrypt, and I wanted to use it with gitlab, however being that it is running on a raspberry pi 2 and its running quite perfectly now (so I dont want to mess anything up), he would…
chabad360
  • 640
  • 1
  • 8
  • 16
35
votes
7 answers

Let's encrypt error certificate install error - "Client with the currently selected authenticator does not support any combination of challenges"

I got this error while renewing let's encrypt certificate: "Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA" How can I fix this? The command I running is like…
Sibin John Mattappallil
  • 1,739
  • 4
  • 23
  • 37
32
votes
9 answers

Let's Encrypt kubernetes Ingress Controller issuing Fake Certificate

Not Sure why I'm getting Fake certificate, even the certificate is properly issued by Let's Encrypt using certmanager The setup is running on the Alibaba Cloud ECS console, where one Kube-master and one cube-minion form a Kubernetes…
anish
  • 6,884
  • 13
  • 74
  • 140
29
votes
4 answers

Certbot /.well-known/acme-challenge

Should I leave the /.well-known/acme-challenge always exposed on the server? Here is my config for the HTTP: server { listen 80; location '/.well-known/acme-challenge' { root /var/www/demo; } location / { if ($scheme =…
Ilya
  • 1,120
  • 1
  • 12
  • 33
28
votes
2 answers

no "ssl_certificate" is defined for the "listen ... ssl" directive

I am trying to configure nginx server for my website. I am using the following code to configure my server. It works if I add default_server for my www.fastenglishacademy.fr (443) server block. But in that case, All my subdomains also brings the…
Ahsan Aasim
  • 1,177
  • 3
  • 14
  • 40
28
votes
5 answers

Multiple subdomains with lets encrypt

I have an attractive message indicating me that it is unfortunately not possible to generate a certificate for multiple subdomains: Wildcard domains are not supported: *.mynewsiteweb.com On the other hand it would be possible to generate it one by…
Breith
  • 2,160
  • 1
  • 23
  • 32
28
votes
3 answers

Certbot not creating acme-challenge folder

I had working Let's encrypt certificates some months ago (with the old letsencrypt client). The server I am using is nginx. Certbot is creating the .well-known folder, but not the acme-challenge folder Now I tried to create new certificates via…
lehnerchristian
  • 1,236
  • 3
  • 13
  • 26
27
votes
1 answer

Whats the difference between OpenSSL and LetsEncrypt?

Historically we have used LetsEncrypt at work, but the nginx container we are using has Openssl installed on it already.
Andrew Graham-Yooll
  • 2,148
  • 4
  • 24
  • 49
26
votes
4 answers

Flutter on Android 7 CERTIFICATE_VERIFY_FAILED with LetsEncrypt SSL cert after Sept 30, 2021

After Sept 30, 2021, https get/post requests to a website using a Let's Encrypt SSL ceritificate on an old Android 7 device were failing with this error: HandshakeException: Handshake error in client (OS Error: CERTIFICATE_VERIFY_FAILED: certificate…
Baker
  • 24,730
  • 11
  • 100
  • 106
26
votes
1 answer

How do you score A+ with 100 on all categories on SSL Labs test with Let's Encrypt and Nginx?

I'm trying to score 100 on all categories when testing my SSL certs at www.ssllabs.com However, I am struggling to get A+ and 100 on all scores. Any tips as to what NGINX config I should use? Or how I should generate my Let's Encrypt certs? thx
danday74
  • 52,471
  • 49
  • 232
  • 283
25
votes
5 answers

In Java, what is the simplest way to create an SSLContext with just a PEM file?

I used LetsEncrypt's CertBot to generate PEM files for free. In other languages it is easy to start an HTTPS server using just a couple lines of code and the PEM/key files. The solutions I have found so far in java are overly complex and I'm…
satnam
  • 10,719
  • 5
  • 32
  • 42
25
votes
10 answers

javax.net.ssl.SSLException: Certificate doesn't match any of the subject alternative names

I recently added LetsEncrypt certificates to my server and my java applet is having problems connecting using TLS. My applet uses Apache HttpClient. My web server is Apache 2,4, and I have a few virtual hosts set up as subdomains of my main domain…
yassam
  • 533
  • 1
  • 6
  • 15
24
votes
3 answers

Configure Nginx to reply to http://my-domain.com/.well-known/acme-challenge/XXXX

I'm not able to get nginx to return the files I've put in /var/www/letsencrypt. nginx/sites-available/mydomain.conf server { listen 80 default_server; listen [::]:80 default_server ipv6only=on; server_name my-real-domain.com; include…
martins
  • 9,669
  • 11
  • 57
  • 85
24
votes
7 answers

LetsEncrypt certbot multiple renew-hooks

I'm automating an SSL certificate renewal from LetsEncrypt's certbot. The actual renewal is working, but I need to automate restarting services so that they load the renewed certificates. I was wondering if you can use multiple --renew-hook…
Atte Juvonen
  • 4,922
  • 7
  • 46
  • 89
1
2
3
99 100