Author Topic: Problem with SSL  (Read 18756 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
Problem with SSL
« on: May 24, 2018, 06:45:40 AM »
Hi,
I am running into an error with SSL Certificates since the last release of CWP.
I have some Domains where Auto-SSL responds with

"Error...!
Apparently the DNS of your domain does not point to this server"

I double checked, it works.
I changed the DNS to my Providers DNS Server nsa7.schlundtech.de but the error still occurs.
The Error only seems to affect the Domains which are created with the user, additional Domains are not affected.

I rebuilt the vhosts Files. For one Domain there is no entry in the vhosts.ssl at all, which I find disturbing.

And yeah I have an error

"Error...!
A certificate for this domain already exists ...!"

eventhough there is no certifiacte at etc/pki/tls/certs

I am having some serious trouble here, I hope you can help me.
Cheers
Jobi

Offline
*****
Re: Problem with SSL
« Reply #1 on: May 24, 2018, 08:13:46 AM »
Try to do these two tests

sh / scripts / restart_cwpsrv

and from you server, ping ssl-proxy.centos-webpanel.com and tell me if you reach it

Offline
*
Re: Problem with SSL
« Reply #2 on: May 24, 2018, 10:09:12 AM »
did a restart, problem is the same

PING ssl-proxy.centos-webpanel.com (37.187.72.216) 56(84) bytes of data.
64 bytes from cloud1.studio4host.com (37.187.72.216): icmp_seq=1 ttl=53 time=24.8 ms
64 bytes from cloud1.studio4host.com (37.187.72.216): icmp_seq=2 ttl=53 time=25.1 ms
64 bytes from cloud1.studio4host.com (37.187.72.216): icmp_seq=3 ttl=53 time=25.2 ms

Offline
*****
Re: Problem with SSL
« Reply #3 on: May 24, 2018, 10:12:26 AM »
Check in the domain ruuda this directory is being created .well-known /

Offline
*
Re: Problem with SSL
« Reply #4 on: May 24, 2018, 10:13:55 AM »
.well-known is being created.

Offline
*****
Re: Problem with SSL
« Reply #5 on: May 24, 2018, 10:18:05 AM »
If the error indicates that the domain already has a certificate, look here for the domain name

/usr/local/apache/conf.d/vhosts-ssl.conf

Offline
*
Re: Problem with SSL
« Reply #6 on: May 24, 2018, 10:47:44 AM »
There is no vhost entry for the specific Domain.

If I enter it manually the httpd won't restart.

But the problems are seperated from eacht other.
Some Domains have the DNS Server Error, only one has this certifiacte does exist error.

And if I Ping the Domain the server gets the correct IP
PING MYDOMAIN.TLD (MY IP) 56(84) bytes of data.
64 bytes from MYSERVER (MYIP): icmp_seq=1 ttl=64 time=0.047 ms
64 bytes from MYSERVER  (MY IP): icmp_seq=2 ttl=64 time=0.076 ms
64 bytes from MYSERVER  (MY IP): icmp_seq=3 ttl=64 time=0.063 ms
the Ping is correct
« Last Edit: May 24, 2018, 10:54:00 AM by happycomputer »

Offline
*
Re: Problem with SSL
« Reply #7 on: May 24, 2018, 04:26:49 PM »
So I tested further and it seems like this only happens with domains which are brought along with creating a user.

Every Domain I create additionally for the users can get ssl correctly.
I don't quite get, why the dns should not see the A-Record correctly.

Offline
*****
Re: Problem with SSL
« Reply #8 on: May 24, 2018, 10:08:26 PM »
Update CWP and try again, I think everything is resolved

Offline
*
Re: Problem with SSL
« Reply #9 on: May 25, 2018, 11:08:56 AM »
It is at actual state.

I set my marker to latest instead of stable.
I will see if that gets me further

Offline
*
Re: Problem with SSL
« Reply #10 on: June 01, 2018, 09:00:03 AM »
Hey guys.

This Problem is getting serious.

I can not generate SSL Certificates for the Domains, which I created together with the User.
I get the Error Message "Error...! Apparently the DNS of your domain does not point to this server" but that is wrong.

I would really need help with that

Offline
*
Re: Problem with SSL
« Reply #11 on: June 01, 2018, 09:10:29 AM »
Okay

I solved the problem.

I have a custom vHosts Template and the Document Root ist customized.

When I change it back to the public_html I can generate an SSL Certificate.

After that I can change the DocRoot again.

hope this helps someone.