Trying to set up web SSL for one domain on my CENTOS7 server.
which created the usual four files cert.pem, chain.pem, fullchain.pem and privkey.pem in the correct goznet.co.uk path off /etc/letsencrypt.
The .well-known folder was successfully created in [path to website] so didn’t appear to be any issues.
However on testing, Firefox 46.0.1 reports:
www.goznet.co.uk uses an invalid security certificate. The certificate is not trusted because it is self-signed.
The certificate is only valid for s17931428
Error code: SEC_ERROR_UNKNOWN_ISSUER
s17931428.onlinehome-server.info is my server name, but was never specified in the certbot command. It appears to have been autodetected from the server by certbot, and overridden my specified domains. It’s not specified anywhere in my Apache config I can see, so it doesn’t seem to be getting it from there.
Testing with ssllabs.com seems to confirm that behaviour, though of course the cause might be more subtle or operator-induced.