Certificate Installation Error on Bitnami NGINX / AWS

Help
1

I’m very new to this so apologies in advance.

I finally got most of the setup commands to process (where I was getting errors before) but at the end, I received errors again and cannot get past this. The preceding commands successfully created the certificates, but when I got to this one, I’ve hit a brick wall again. I really need to finish this to get the site up. Any suggestions would be appreciated.

sudo chown root:root /opt/bitnami/nginx/server.*
chown: cannot access ‘/opt/bitnami/nginx/server.*’: No such file or directory

2

You should include a link to the guide you are following.
And include any other relevant information; like:

  • Which ACME client you are using.
  • What command(s) you ran.
  • Any error messages shown.
  • A copy of the client log file.
1 Like
3

WordPress with NGINX and SSL Certified by Bitnami and Automattic-5-3-2-2 on Ubuntu 16-04-AutogenByAWSMP-4

https://docs.bitnami.com/general/how-to/generate-install-lets-encrypt-ssl/#alternative-approach

I first got this far....

bitnami@ip-172-31-26-168:~$ sudo /opt/bitnami/ctlscript.sh stop
/opt/bitnami/nginx/scripts/ctl.sh : Nginx not running
/opt/bitnami/php/scripts/ctl.sh : php-fpm not running
/opt/bitnami/mysql/scripts/ctl.sh : mysql not running
bitnami@ip-172-31-26-168:~$ sudo /opt/bitnami/letsencrypt/lego --tls --email="kieran@dearn.org" --domains="fitzroyownsit.com" --domains="www.fitzroyownsit.com" --path="/opt/bitnami/letsencrypt" run
2020/01/20 19:06:26 [INFO] [fitzroyownsit.com, www.fitzroyownsit.com] acme: Obtaining bundled SAN certificate
2020/01/20 19:06:26 [INFO] [fitzroyownsit.com] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/2381694416
2020/01/20 19:06:26 [INFO] [www.fitzroyownsit.com] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/2386855287
2020/01/20 19:06:26 [INFO] [fitzroyownsit.com] acme: authorization already valid; skipping challenge
2020/01/20 19:06:26 [INFO] [www.fitzroyownsit.com] acme: use tls-alpn-01 solver
2020/01/20 19:06:26 [INFO] [www.fitzroyownsit.com] acme: Trying to solve TLS-ALPN-01
2020/01/20 19:06:31 [INFO] [www.fitzroyownsit.com] The server validated our request
2020/01/20 19:06:31 [INFO] [fitzroyownsit.com, www.fitzroyownsit.com] acme: Validations succeeded; requesting certificates
2020/01/20 19:06:32 [INFO] [fitzroyownsit.com] Server responded with a certificate.
bitnami@ip-172-31-26-168:~$ sudo mv /opt/bitnami/nginx/conf/server.crt /opt/bitnami/nginx/conf/server.crt.old
bitnami@ip-172-31-26-168:~$ sudo mv /opt/bitnami/nginx/conf/server.key /opt/bitnami/nginx/conf/server.key.old
bitnami@ip-172-31-26-168:~$ sudo mv /opt/bitnami/nginx/conf/server.csr /opt/bitnami/nginx/conf/server.csr.old
bitnami@ip-172-31-26-168:~$ sudo chown root:root /opt/bitnami/nginx/conf/serverbitnami@ip-172-31-26-168:~$ sudo chmod 600 /opt/bitnami/nginx/conf/server
bitnami@ip-172-31-26-168:~$ sudo /opt/bitnami/ctlscript.sh start
/opt/bitnami/mysql/scripts/ctl.sh : mysql started at port 3306
/opt/bitnami/php/scripts/ctl.sh : php-fpm started
nginx: [emerg] cannot load certificate "/opt/bitnami/nginx/conf/server.crt": BIO_new_file() failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/opt/bitnami/nginx/conf/server.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)

4

then

Seems to add up.
There is a missing step:
The new cert needs to be created (combined copy) to /opt/bitnami/nginx/conf/server.crt

1 Like
5

I’m really new to this. What is the command I would use to do that. I’m literally following the guide I referenced.

Thanks so much for your help btw.

6

The guide has this in it:

image
image752×90 41.7 KB

Step 3: Configure the Web server to use the Let’s Encrypt certificate
explains what to do next.

1 Like
7

bitnami@ip-172-31-26-168:~$ sudo /opt/bitnami/ctlscript.sh stop
/opt/bitnami/nginx/scripts/ctl.sh : Nginx not running
/opt/bitnami/php/scripts/ctl.sh : php-fpm stopped
/opt/bitnami/mysql/scripts/ctl.sh : mysql stopped
bitnami@ip-172-31-26-168:~$ sudo ln -sf /opt/bitnami/letsencryt/certificates/DOMAIN.key /opt/bitnami/nginx/conf/server.key
bitnami@ip-172-31-26-168:~$ sudo ln -sf /opt/bitnami/letsencryt/certificates/DOMAIN.crt /opt/bitnami/nginx/conf/server.crt
bitnami@ip-172-31-26-168:~$ sudo chown root:root /opt/bitnami/nginx/conf/server*chown: cannot dereference '/opt/bitnami/nginx/conf/server.crt': No such file or directory
chown: cannot dereference '/opt/bitnami/nginx/conf/server.key': No such file or directory

8

Where they say:

I think they mean for you to replace "DOMAIN" with your actual domain.
To see what files are there, try:
ls -l /opt/bitnami/letsencryt/certificates/

1 Like
9

bitnami@ip-172-31-26-168:~ sudo ln -sf /opt/bitnami/letsencryt/certificates/fitzroyownsit.com.crt /opt/bitnami/nginx/conf/server.crt bitnami@ip-172-31-26-168:~ sudo ln -sf /opt/bitnami/letsencryt/certificates/fitzroyownit.com.key /opt/bitnami/nginx/conf/server.key
bitnami@ip-172-31-26-168:~$ sudo chown root:root /opt/bitnami/nginx/conf/server*chown: cannot dereference ‘/opt/bitnami/nginx/conf/server.crt’: No such file or directory
chown: cannot dereference ‘/opt/bitnami/nginx/conf/server.key’: No such file or directory

10

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.