Submitted by vincen on Wed, 05/10/2017 - 10:03 Pro Licensee
Hi
If you use the built-in Let's Encrypt feature in Virtualmin to generate and install automatically SSL certificates for a virtual server it makes half the job ! It's missing to add the ca file record in Apache configuration !
What virtualmin does: SSLCertificateFile /home/orn6hon4i5ph/domains/group.mydomain.org/ssl.cert SSLCertificateKeyFile /home/orn6hon4i5ph/domains/group.mydomain.org/ssl.key
and what it should be: SSLCertificateFile /home/orn6hon4i5ph/domains/group.mydomain.org/ssl.cert SSLCertificateKeyFile /home/orn6hon4i5ph/domains/group.mydomain.org/ssl.key SSLCACertificateFile /home/orn6hon4i5ph/domains/group.mydomain.org/ssl.ca
Thanks,
Vincèn
Status:
Active
Comments
Submitted by andreychek on Wed, 05/10/2017 - 10:51 Comment #1
Howdy -- hmm, it should be adding a "SSLCACertificateFile" line that points to the ssl.ca file.
It might be lower than the other lines though, they aren't always grouped together.
Do you by chance see a "SSLCACertificateFile" line in your Apache config there? I just did some testing and it does appear to be working for me.
Submitted by vincen on Thu, 05/11/2017 - 00:41 Pro Licensee Comment #2
Hum confused because I just checked with an other virtual that I "upgraded" to SSL and this time it added well the three lines for certificates ! Might be only on virtual I migrated from an other virtualmin server... Will let you know if problem happens again, sorry for inconvenience ;)
Submitted by vincen on Thu, 05/11/2017 - 01:16 Pro Licensee Comment #3
Additional details: Remove SSL feature of an existing virtual server Put back SSL feature on that virtual server
Virtualmin has putted back in Apache the two lines for the previous certificate but don't put back the line for the ca certificate :(
Submitted by JamieCameron on Thu, 05/11/2017 - 11:47 Comment #4
Do you have the
certbotorletsencryptorletsencrypt-autocommands installed on your system?Submitted by vincen on Fri, 05/12/2017 - 01:58 Pro Licensee Comment #5
In fact I have no idea which one it uses, I made a search on package installed on system but non of the three got me some success :(
Submitted by JamieCameron on Fri, 05/12/2017 - 23:19 Comment #6
I mean, if you run those commands, are any of them installed?