I successfully used certbot to install a certificate for
https://www.twoplustwo.com
A while later I tried to install a second certificate for
https://admin.twoplustwo.com
It seems to have succeeded (looking at the /etc/letsencrypt and the conf files) except that qualsys reports a name mismatch on the second one (it says that the certificate name is www.twoplustwo.com instead of admin.twoplustwo.com ).
What to do?
schoen
June 30, 2017, 10:37pm
2
Hi @weinstoc ,
Can you tell us what Certbot commands you ran and what output you saw?
Unless you issued the new certificate extremely recently, it doesn’t look like it actually worked. I only see two issued certificates
https://crt.sh/?Identity=%.twoplustwo.com&iCAID=16418
which are for www.twoplustwo.com and for pokercast.twoplustwo.com , but none for admin.twoplustwo.com . This suggests that the second attempt did not actually succeed.
Also, right now https://www.twoplustwo.com/ is redirecting users back to http://www.twoplustwo.com/ , greatly decreasing the benefit of having the certificate.
I’m not at my computer, but I think I used:
./certbot-auto --apache
And then chose the domain from the list.
The cert exists in /etc/letsencrypt and I can extract the name from it and it says admin…
Also I have double checked the appropriate cons file in conf.d
The redirect in www.twoplustwo.com is because we are in the midst of the changeover. If you go to https://www.twoplustwo.com/store/ you will see it working.
Thanks,
Chuck
Seth,
I found (wth the help of my hosting service) a configuration error on my end. I would not have found it without your help.
Thanks,
Chuck
system
Closed
August 1, 2017, 12:35am
5
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.