Connection Refused p80 and self signed cert on one domain

If you’re asking for help setting up certificates on your site, make sure to include:
the full domain name of your site mgmttechpad.biz
the command line you ran: certbot --apache
the output of that command

[root@mgmt sites-enabled]# certbot --apache
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org

Which names would you like to activate HTTPS for?

1: mgmt.techpad.biz
2: accounts.techworks.support
3: accounts.techworks.design
4: accounts.techworks.hosting
5: accounts.techworks.consulting
6: accounts.thekind.press
7: accounts.windowsmanagedbackup.com
8: accounts.wordup.press

Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter ‘c’ to cancel):
Obtaining a new certificate
Performing the following challenges:
tls-sni-01 challenge for mgmt.techpad.biz
tls-sni-01 challenge for accounts.techworks.support
tls-sni-01 challenge for accounts.techworks.design
tls-sni-01 challenge for accounts.techworks.hosting
tls-sni-01 challenge for accounts.techworks.consulting
tls-sni-01 challenge for accounts.thekind.press
tls-sni-01 challenge for accounts.windowsmanagedbackup.com
tls-sni-01 challenge for accounts.wordup.press
Waiting for verification…
Cleaning up challenges
Created an SSL vhost at /etc/httpd/sites-enabled/mgmt.techpad.biz-le-ssl.conf
Deploying Certificate for mgmt.techpad.biz to VirtualHost /etc/httpd/sites-enabled/mgmt.techpad.biz-le-ssl.conf
Created an SSL vhost at /etc/httpd/sites-enabled/accounts.techworks.support-le-ssl.conf
Deploying Certificate for accounts.techworks.support to VirtualHost /etc/httpd/sites-enabled/accounts.techworks.support-le-ssl.conf
Created an SSL vhost at /etc/httpd/sites-enabled/accounts.techworks.design-le-ssl.conf
Deploying Certificate for accounts.techworks.design to VirtualHost /etc/httpd/sites-enabled/accounts.techworks.design-le-ssl.conf
Created an SSL vhost at /etc/httpd/sites-enabled/accounts.techworks.hosting-le-ssl.conf
Deploying Certificate for accounts.techworks.hosting to VirtualHost /etc/httpd/sites-enabled/accounts.techworks.hosting-le-ssl.conf
Created an SSL vhost at /etc/httpd/sites-enabled/accounts.techworks.consulting-le-ssl.conf
Deploying Certificate for accounts.techworks.consulting to VirtualHost /etc/httpd/sites-enabled/accounts.techworks.consulting-le-ssl.conf
Created an SSL vhost at /etc/httpd/sites-enabled/accounts.thekind.press-le-ssl.conf
Deploying Certificate for accounts.thekind.press to VirtualHost /etc/httpd/sites-enabled/accounts.thekind.press-le-ssl.conf
Created an SSL vhost at /etc/httpd/sites-enabled/accounts.windowsmanagedbackup.com-le-ssl.conf
Deploying Certificate for accounts.windowsmanagedbackup.com to VirtualHost /etc/httpd/sites-enabled/accounts.windowsmanagedbackup.com-le-ssl.conf
Created an SSL vhost at /etc/httpd/sites-enabled/accounts.wordup.press-le-ssl.conf
Deploying Certificate for accounts.wordup.press to VirtualHost /etc/httpd/sites-enabled/accounts.wordup.press-le-ssl.conf

Please choose whether HTTPS access is required or optional.

1: Easy - Allow both HTTP and HTTPS access to these sites
2: Secure - Make all requests redirect to secure HTTPS access

Select the appropriate number [1-2] then [enter] (press ‘c’ to cancel): 1


Congratulations! You have successfully enabled https://mgmt.techpad.biz,
https://accounts.techworks.support, https://accounts.techworks.design,
https://accounts.techworks.hosting, https://accounts.techworks.consulting,
https://accounts.thekind.press, https://accounts.windowsmanagedbackup.com, and
https://accounts.wordup.press

You should test your configuration at:
https://www.ssllabs.com/ssltest/analyze.html?d=mgmt.techpad.biz
https://www.ssllabs.com/ssltest/analyze.html?d=accounts.techworks.support
https://www.ssllabs.com/ssltest/analyze.html?d=accounts.techworks.design
https://www.ssllabs.com/ssltest/analyze.html?d=accounts.techworks.hosting
https://www.ssllabs.com/ssltest/analyze.html?d=accounts.techworks.consulting
https://www.ssllabs.com/ssltest/analyze.html?d=accounts.thekind.press
https://www.ssllabs.com/ssltest/analyze.html?d=accounts.windowsmanagedbackup.com
https://www.ssllabs.com/ssltest/analyze.html?d=accounts.wordup.press

IMPORTANT NOTES:

  • Congratulations! Your certificate and chain have been saved at
    /etc/letsencrypt/live/mgmt.techpad.biz/fullchain.pem. Your cert
    will expire on 2017-09-21. To obtain a new or tweaked version of
    this certificate in the future, simply run certbot again with the
    "certonly" option. To non-interactively renew all of your
    certificates, run “certbot renew”

  • If you like Certbot, please consider supporting our work by:

    Donating to ISRG / Let’s Encrypt: https://letsencrypt.org/donate
    Donating to EFF: https://eff.org/donate-le

name and version of your operating system and your web server
CentOS Linux release 7.3.1611 (Core)
Server version: Apache/2.4.6 (CentOS)

what type of hosting provider you are using, if applicable
own hosting… hyper-v

My issue is that the all the domains work, except for mgmt.techpad.biz. This returns a self signed cert. I check the SSL vhost config that certbot created and its pointing to the same certs as the rest of the domains. So I’m not sure what gives or how to fix.

Found the self-signed cert in ssl.conf configuration. Removed and it worked.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.