Author Topic: Replace self signed CWP SSL cert on server hostname with letīs encrypt ssl cert  (Read 4942 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
The new module for SSL via Letīs Encrypt actually works just fine, except for the 'custom install - also for server hostname) install.

Using all other options in the module works like a dream, but there is no option on how to get the server hostname, eg. srv1.dmoain.ldt to work as smoothly as the other options in the module...?

Checking around the web, it shows that most people with this problem, canīt find the correct path to put into the box and donīt know if they have to set 2031 in the port setting and actually how to get the Custom Install to setup and replace the CWP generated and self signed SSL cert...

I havenīt found anybody who made this work just by filling out the boxes in the 'custom install' option in the module, but have found an ocean of more or less strange options on how to circumvent the present setup to make it work...

Maybe it would be a good idea to make a step-by-step information for all to follow to avoid many asking the same question here and many other places...?

Offline
*
same issue

Offline
*****
Hello.

Try to add VirtualHost with your hostname and install the SSL.
Also, it should be work if you will set the path as /usr/local/apache/htdocs/

Offline
*
Hello.

Try to add VirtualHost with your hostname and install the SSL.
Also, it should be work if you will set the path as /usr/local/apache/htdocs/

Hi Igor - thanks - that took care of generating the certificate, but opposed to the other lets encrypt certs, this did not install as service certificate on the hostname...?

I can see some people says that it needs to be taken care of via the SSL certmanager in cwp, but the Lets encrypt uses another location for the cert files than the selfsigned, so an easy 'do-like-this' would be welcome... ;-)

Offline
*****
Hi, it should be works.
Contact with CWP support http://centos-webpanel.com/support-services

Offline
*
Hi, it should be works.
Contact with CWP support http://centos-webpanel.com/support-services

It seems like letīs encrypt do not overrule the standard SSL cert placement for CWP, leaving the old selfsigned cert in working mode and the new hostname cert is not 'seen' by cwp/apache...

It works just fine for all other domains, just not for the hostname cert

Does anybody have a workaround for this problem...?

Apparently CWP autosearches for the ssl provided by the selfsigned function at the 'normal' place for CWP certs and NOT at the 'new' ssl location provided by the letīs encrypt certs, so it is probably a simple workaround - but how...??
« Last Edit: September 01, 2016, 03:49:34 PM by muscator »

Offline
*
Hi Igor, I have - as you suggested - contacted
CWP support http://centos-webpanel.com/support-services

but so far havenīt heard anything from them....

As mentioned before, Iīm sure there is a simple workaround to the problem, I just havenīt been able to find it yet.....

Any assistance would be appreciated.

Offline
*
Hi, it should be works.
Contact with CWP support http://centos-webpanel.com/support-services

It seems like letīs encrypt do not overrule the standard SSL cert placement for CWP, leaving the old selfsigned cert in working mode and the new hostname cert is not 'seen' by cwp/apache...

It works just fine for all other domains, just not for the hostname cert

Does anybody have a workaround for this problem...?

Apparently CWP autosearches for the ssl provided by the selfsigned function at the 'normal' place for CWP certs and NOT at the 'new' ssl location provided by the letīs encrypt certs, so it is probably a simple workaround - but how...??

Hi Igor,

Unfortunately it doesnīt work - furthermore I have raised a ticket at the address you mention, but nobody has responded yet....?


Offline
*
Actually I finally received a response that pointed me in the right direction, I had tried the solution before but to no avail, but this time I added some other actions and now it finally works - thanks for all responses...

Offline
*
Actually I finally received a response that pointed me in the right direction, I had tried the solution before but to no avail, but this time I added some other actions and now it finally works - thanks for all responses...

How did you get this to work please? I also have managed to install the Letsencrypt certificate for the CWP on port 2031 - but going to https://myip:2031 is still picking up the self-signed certificate.


Offline
*
I have the host name set with right certificate but not CWP on port 2030 or 2031

I am getting  Bad SSL record too long when i go to https://server1.domain.com/cwp


I have read on the forum that i should use AutoSSL to fix this

How?

by issuing a cert on for port 2031?

Offline
**
Just select your hostname.cert from the Certificate dropdown box and use AutoSSL.

Web Design, Development & VPS Hosting
https://6sense.com.au

Offline
*****
change the hostname (you can simply click change hostname if you don't want to use another hostname) this will generate ssl LE cert

Offline
*
Changing the hostname doesn't work in all cases.

i.e.

On first attempt it tried to generate a certificate but error message said that the the validation failed.
Now, it just keeps generating self signed certificate.  ???