Stack Overflow
Stack Overflow

Questions tagged [lets-encrypt]

LET'S ENCRYPT QUESTIONS MUST BE PROGRAMMING RELATED. Let’s Encrypt is a free, automated, and open certificate authority provided by the Internet Security Research Group.

LET'S ENCRYPT QUESTIONS MUST BE PROGRAMMING RELATED. Let's Encrypt is a certificate authority that provides free X.509 certificates for Transport Layer Security encryption (TLS). It uses an automated process designed to eliminate the current complex process of manual creation, validation, signing, installation and renewal of certificates.

2023 questions
16
votes
5 answers

let's encrypt vs cloudflare or both?

I've been really confused between cloudflare's ssl and using let's encrypt to have my website become full https. Many sources say to use either or use both. However there is not a very decisive way to figure out whether to use both or just use one…
user805981
  • 9,979
  • 8
  • 44
  • 64
16
votes
4 answers

Using certbot to apply Let's Encrypt Certificate: Failed authorization procedure

I am using certbot to apply Let's Encrypt certificate, my server is centos 7.2 and nginx 1.11.9. what does this mean below? [root@test ~]# certbot certonly --webroot -w /var/www/www.example.com -d example.com -d www.example.com Failed authorization…
zwl1619
  • 4,002
  • 14
  • 54
  • 110
16
votes
2 answers

How can I use a LetsEncrypt SSL cert in my Heroku Node Express app?

I have a Node Express app running on Heroku that I want to encrypt with a free-of-charge SSL cert from LetsEncrypt. However, the methods I've seen require opening up ports 443 and 80 to allow the ACME process to work. Heroku only gives you one…
stone
  • 8,422
  • 5
  • 54
  • 66
16
votes
1 answer

Convert Certificate and Private Key to .PFX programmatically in C#

I have a .cer file output from a successful LetsEncrypt certificate request. I have the original Private Key used to create the Certificate Signing Request (CSR) for LetsEncrypt. Now we need to programmatically combine these two files into a PFX…
Marcus
  • 675
  • 2
  • 8
  • 24
15
votes
4 answers

NGINX + Let's encrypt: Could not automatically find a matching server block

I'm publishing a website made with Python Pyramid on an Ubuntu 18.04 server. The website is running properly on HTTP and now I'm trying to make it run on HTTPS by following this article but when trying to install I get this message: IMPORTANT…
André Luiz
  • 6,642
  • 9
  • 55
  • 105
15
votes
2 answers

Let's Encrypt: How to manually test the certbot renewal process?

I have a working setup where Let's Encrypt certificates are generated with certbot. I wonder how you effectively test whether the renewal will work in production. The certificates last for 90 days. Is there a way to reduce the lifespan to, for…
Philipp Claßen
  • 41,306
  • 31
  • 146
  • 239
15
votes
1 answer

Letsencrypt how to use --preferred-challenges

This command: $ letsencrypt certonly --manual --preferred-challenges dns --email foo@bar.com --domains test001.bar.com outputs: letsencrypt: error: unrecognized arguments: --preferred-challenges dns From the documentation here:…
Bob van Luijt
  • 7,153
  • 12
  • 58
  • 101
14
votes
4 answers

pymongo [SSL: CERTIFICATE_VERIFY_FAILED]: certificate has expired on Mongo Atlas

I am using MongoDB(Mongo Atlas) in my Django app. All was working fine till yesterday. But today, when I ran the server, it is showing me the following error on console Exception in thread django-main-thread: Traceback (most recent call last): …
Malina Dale
  • 153
  • 1
  • 3
  • 8
14
votes
4 answers

certbot cannot verify domain and connection refused

I am trying to generate certificate for my domain. I can ping my domain but still getting error. I have added inbound firewall rule to my digital ocean server to accept port 80 on ipv4 and ipv6 as well. Not sure what is wrong. [Note: my nginx server…
ksernow
  • 662
  • 3
  • 14
  • 33
14
votes
5 answers

Letsencrypt ImportError: No module named interface on amazon linux while renewing

Today when i tried to renew my certificates using this command I'm facing error /opt/letsencrypt/letsencrypt-auto renew --config /etc/letsencrypt/config.ini --agree-tos && apachectl graceful also tried this command /opt/letsencrypt/letsencrypt-auto…
O-mkar
  • 5,430
  • 8
  • 37
  • 61
14
votes
1 answer

Elixir Phoenix production server has issue with Letsencrypt renewal

I have a site built with Elixir Phoenix frame work. The website runs fine in both dev and prod mode. When the phoenix server is running in dev mode, I have no issue renewingLet's Encrypt certificate, but when the exact same app is running in prod…
yial2
  • 223
  • 1
  • 11
13
votes
5 answers

New-WebBinding: Cannot retrieve the dynamic parameters for the cmdlet

We're using Windows 2012 Server R2. We're trying to automate the creation of LetsEncrypt certificates. We're using LetsEncrypt-Win-Simple (https://github.com/Lone-Coder/letsencrypt-win-simple). Once the cert is created (via LetsEncrypt.exe) we have…
Dave Quested
  • 786
  • 1
  • 8
  • 20
12
votes
2 answers

How to force older debian to forget about DST Root CA X3 Expiration and use ISRG Root X1 - SSL certificate problem: certificate has expired

This relates to DST Root CA X3 Expiration (September 2021) When searching online for a fix to apply on an older server (Debian 8 in my case) that does call to sites encrypted with letsencrypt with curl, they now seem to fail with the following…
GabLeRoux
  • 16,715
  • 16
  • 63
  • 81
12
votes
1 answer

Shell script to make site https using certbot and nginx

I know how to install ssl certificate using command-line. But i need a shell script this time to do this task. Generally while doing this manually i first execute the fowllowing:- sudo apt-get install certbot python-certbot-nginx By executing the…
Amandeep Singh
  • 1,371
  • 1
  • 11
  • 33
12
votes
1 answer

Certbot-auto --manual plugin not working

I already generated certificates using certbot-auto with --manual plugin. Now the certbot version upgraded from 0.25.1 to 0.26.1, now i’m not able to use the --manual option as it says deprecated in the certbot 0.26.1. This is the command i used to…
Karan
  • 445
  • 5
  • 15
1 2 3
99 100