Author Topic: install letsencrypt on cwp itself  (Read 1100 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
install letsencrypt on cwp itself
« on: January 27, 2017, 07:55:43 AM »
i've installed letsencrypt on domains successfully and it is very easy really on cwp

just wondering if i can install it on cwp itself which im accessing it as ip not a domain
thanks

Offline
*****

Offline
*
Re: install letsencrypt on cwp itself
« Reply #2 on: February 07, 2017, 12:08:04 PM »
Unfortunately I am unable to install a certificate for CWP on CentOS 7 using this guide, does anyone know how to do this? cwp-ssl.conf is missing from /usr/local/cwpsrv/conf.d/ and if I create it manually I get the following error

Redirecting to /bin/systemctl restart  cwpsrv.service
Job for cwpsrv.service failed because the control process exited with error code. See "systemctl status cwpsrv.service" and "journalctl -xe" for details.


Offline
*
Re: install letsencrypt on cwp itself
« Reply #3 on: February 08, 2017, 10:47:09 PM »
as mentioned here:
http://forum.centos-webpanel.com/ssl/error-restarting-cwpsrv-service-for-servername-ssl/msg9998/#msg9998


Follow the steps from the instructions (http://wiki.centos-webpanel.com/hostname-ssl-with-letsencrypt) until Step 3 and edit the cwpserv.conf so that the server configuration area looks like this:

Code: [Select]
/usr/local/cwpsrv/conf/cwpsrv.conf
should start at line 47

 server {
        listen       2031;
        listen       2087;
        listen       2083;
        server_name  localhost;

        ssl                 on;
        ssl_session_timeout 90m;
       
        ssl_certificate /etc/letsencrypt/live/YOUR-HOSTNAME/fullchain.pem;
        ssl_certificate_key /etc/letsencrypt/live/YOUR-HOSTNAME/privkey.pem;
        ssl_protocols       TLSv1 TLSv1.1 TLSv1.2;
        ssl_ciphers         HIGH:!aNULL:!MD5;
        ssl_prefer_server_ciphers   on;

dont forget to change the YOUR-HOSTNAME

This solution worked for me.

Maybe anyone from the CWP Dev Team can check if this solution could be integrated in CWP itself.
Or at least if anybody can check if the changes are persistent. Maybe the config file is overwritten when the panel is updateing.

Sincerly.
Sebhoff