Lets Encrypt fails saying key size too small (1024)

Hi, I've been using VirtualMin for years and love it. Right now I'm getting an error message when trying to renew a LetsEncrypt SSL cert. The error is:

ValueError: Error signing certificate: 400 { "type": "urn:acme:error:malformed", "detail": "Invalid key in certificate request :: Key too small: 1024", "status": 400 }

I've tried generating a new CSR with 2048 and then rerunning request. I also tried creating a self-signed cert with 2048 to try to wipe out the existing cert. Then I requested a new LetsEncrypt cert and received the same issue.

Searched the forums, couldn't find an answer.

Thanks!

Status: 
Active

Comments

Howdy -- if you go into System Settings -> Virtualmin Config -> SSL Settings, what is "Default SSL key size" set to?

Woohoo, it was at 1024. I never went to that screen before, was 1024 a leftover? I've been using VirtualMin for 8 years now.

Will post back if this doesn't fix it and thanks again!

I'm glad that fixed it!

Yeah key sizes are larger by default now, but yeah that older size could be leftover from earlier version.