Hello, I am trying to set up Let’s Encrypt on my Ubuntu 16.04 server, and I was sent here from Digital Ocean. I thought I installed and ran the right tutorial to install LE with nginx, when I was told I should have done the tutorial to install LE with apache. I am being told when I go to run the command:
sudo certbot --apache -d haracoin.com -d www.haracoin.com
The certificate is created successfully created, but I still get the warning that my server is not secure. My apache log also says (info is changed for security reasons):
[Thu Sep 21 15:13:57.319938 2017] [ssl:error] [pid 1577] AH02604: Unable to configure certificate 18.104.22.168:443:0 for stapling [Thu Sep 21 15:13:57.321538 2017] [mpm_prefork:notice] [pid 1577] AH00163: Apache/2.4.18 (Ubuntu) OpenSSL/1.0.2g configured -- resuming normal operations [Thu Sep 21 15:13:57.321551 2017] [core:notice] [pid 1577] AH00094: Command line: '/usr/sbin/apache2' [Thu Sep 21 15:14:03.543145 2017] [mpm_prefork:notice] [pid 1577] AH00171: Graceful restart requested, doing restart [Thu Sep 21 15:14:03.826324 2017] [ssl:warn] [pid 1577] AH01906: 22.214.171.124:443:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Thu Sep 21 15:14:03.830474 2017] [ssl:warn] [pid 1577] AH01909: 126.96.36.199:443:0 server certificate does NOT include an ID which matches the server name [Thu Sep 21 15:14:03.830899 2017] [ssl:error] [pid 1577] AH02217: ssl_stapling_init_cert: can't retrieve issuer certificate! [subject: emailAddressemail@example.com,O=MiYu Holdings\\, Inc.,L=Orem,ST=Utah,C=US / issuer: emailAddressfirstname.lastname@example.org,O=MiYu Holdings\\, Inc.,L=Orem,ST=Utah,C=US / serial: C308F1E20C637C59 / notbefore: Sep 8 20:51:25 2017 GMT / notafter: Sep 8 20:51:25 2018 GMT]
I see that my logs are saying it can’t find my certificate, and that the server cert is not a CA cert. I had started the server using self-signed certificates, if that has anything to do with it. Thank you for any help you can provide.