Submitted by durimi on Fri, 01/29/2021 - 03:39
These days som of our Android clients that consumes API server that are powered by VirtualMin on CentOS 7 with LetsEncrypt certificates went offline and with further investigations Android/Volley was complaining with this error code:
java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.
Further investigation lead to see that LetsEncrypt is using new intermediate Chain. Manually changing the Ca certificate fix the problem. Some discussion on this: https://community.letsencrypt.org/t/chain-missing-or-incomplete/140592/9
Thanks for the heads up.
This issue is fixed for Webmin 1.971.
Using certbot for requesting Let's Encrypt certificate should be considered as a preferred option.