The operating system my web server runs on is (include version): CentOS 6.9
My web server is (include version): Apache/2.2.15 (Unix)
Python 2.6.6 (r266:84292, Aug 18 2016, 15:13:37)
Hosting Provider: Digital Ocean droplet
DNS: Clodflare (with cloud disabled / bypassed)
Root access
Any assistance would be highly appreciated. Thank you for your time.
Comes back with Alternative Names - Invalid / Not Trusted. Will not load in Chrome.
https://www.sslshopper.com/ssl-checker.html#hostname=workwebpage.com
The certificate is not trusted in all web browsers. You may need to install an Intermediate/chain certificate to link it to a trusted root certificate. Learn more about this error. The fastest way to fix this problem is to contact your SSL provider.
Removed IfModule line, restarted apache, same result.
I am wondering if my problem is at the Cloudflare level somehow. The certificate offered in chrome / at ssllabs does not match my newly created cert on the machine.
– edit –
disregard last statement, I’m not reading UTC timestamps correctly.
I suppose you mean lines, because that appears several times in several conf files.
I'm sorry but I'm leaving right now, some community buddies could help you out but just in case, you can tar your apache conf and upload it somewhere, or leave it in your server and post the url and tonight or tomorrow morning I will take a look:
tar zcvf /var/www/html/httpd-conf.tar.gz /etc/httpd/
So we can get it using http://workwebpage.com/httpd-conf.tar.gz
In chrome, when I visit https://workwebpage.com, it did not give the pem file that certbot created. Which I found odd. I searched my machine for files containing the publicly available cert.
I found /etc/pki/tls/certs/localhost.crt matched what was hosted, which is not what I expected.
I tracked that down in apache’s config. Appears I tried to set up the server with OpenSSL at some time in the past, and hadn’t removed that from the apache config. It was in /etc/httpd/conf.d/ssl.conf. Derp.
Redirected the links in /etc/httpd/conf.d/ssl.conf to now point to:
And now everything seems copacetic. Again, thank you for your help. Hopefully if anyone else has a similar problem, this thread can help them track the issue down.