Hi All,
My domain is:
https://appservices.mobisol.be/
Command:
sudo certbot --nginx
Output:
OS:
Ubuntu 20.04.6 LTS
nginx/1.18.0 (Ubuntu)
This API is used for mobile apps.
There is no problem for IOS, but there is for Android devices.
When we check the Cert Chain I come across this issue.
It's just not clear to me how to solve this.
Does an adjustment have to be made to the App / API / or the way I generate the certificate?
Thanks in advance!
Kind regards,
Chris
You are using the standard "long" chain that Let's Encrypt offers by default, this exists (using the expired) root or general compatability with older devices. You can optionally use the newer unexpired ISRG Root X1 issuer using --preferred-chain "ISRG Root X1"
Are you sure the problem is certificate chain? Which version of Android is having problems?
I used the "--preferred-chain" option and it seems solved, still need to do some testing.
But on auto-renewal, is this certificate using the "correct" chain again?
I believe it will but I think you can check your /certbot/renewal/.conf file to confirm the options it will use upon renewal.
That seems right indeed!
Thank you!
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.
