Certifictae issued but not installed

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: zaiba.in

I ran this command: sudo certbot certonly --manual --non-interactive --agree-tos --manual-public-ip-logging-ok --email [REDACTED EMAIL] --no-eff-email --preferred-challenges=http --manual-auth-hook /var/authenticate.sh --manual-cleanup-hook /var/clean.sh -d zaiba.in --redirect

It produced this output: Saving debug log to /var/log/letsencrypt/letsencrypt.log Plugins selected: Authenticator manual, Installer None Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org Obtaining a new certificate IMPORTANT NOTES: - Congratulations! Your certificate and chain have been saved at: /etc/letsencrypt/live/zaiba.in/fullchain.pem Your key file has been saved at: /etc/letsencrypt/live/zaiba.in/privkey.pem Your cert will expire on 2020-06-02. To obtain a new or tweaked version of this certificate in the future, simply run certbot again. To non-interactively renew all of your certificates, run “certbot renew” - If you like Certbot, please consider supporting our work by: Donating to ISRG / Let’s Encrypt: https://letsencrypt.org/donate Donating to EFF: https://eff.org/donate-le

My web server is (include version): amazon lightsail lampp instance

The operating system my web server runs on is (include version): LAMPP

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 0.31.0

The certificate is issued but it seems it has not installed the same bcos the domain still shows not secure.

Any help?

well, that's expected, that command doesn't install the certificate.

run certbot install to install the certificate.

Unless they provide different content, you might want to include the WWW in the cert:
-d zaiba.in -d www.zaiba.in

I’m also not certain if these work well together:
certonly
--redirect
[you may have to do some first-time/one-time manual redirection]

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.