Could not add certificate via manual mode


#1

Hello,

I’m having problems when create a certificate for my test site.
Below here are all the steps and its output:

sudo ./certbot-auto certonly --manual --preferred-challenges=http
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator manual, Installer None
Please enter in your domain name(s) (comma and/or space separated) (Enter ‘c’
to cancel): sldev10.com www.sldev10.com
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for sldev10.com
http-01 challenge for www.sldev10.com


NOTE: The IP of this machine will be publicly logged as having requested this
certificate. If you’re running certbot in manual mode on a machine that is not
your server, please ensure you’re okay with that.

Are you OK with your IP being logged?


(Y)es/(N)o: Y


Create a file containing just this data:

rbRL1RrSPR5kNBYc5nRWiJPZRx-60MkpJYzy7V6Nxqg.7O9Gg7AAWp8yY2V4wJBwt8mJ6jH65RboTwyLcrxUFEw

And make it available on your web server at this URL:

http://sldev10.com/.well-known/acme-challenge/rbRL1RrSPR5kNBYc5nRWiJPZRx-60MkpJYzy7V6Nxqg


Press Enter to Continue


Create a file containing just this data:

aiC_HlecOjT9ooc53MIUj-XoTUuED4AbYvYvp7WEwOg.7O9Gg7AAWp8yY2V4wJBwt8mJ6jH65RboTwyLcrxUFEw

And make it available on your web server at this URL:

http://www.sldev10.com/.well-known/acme-challenge/aiC_HlecOjT9ooc53MIUj-XoTUuED4AbYvYvp7WEwOg


Press Enter to Continue
Waiting for verification…
Cleaning up challenges

IMPORTANT NOTES:

  • Congratulations! Your certificate and chain have been saved at:
    /etc/letsencrypt/live/sldev10.com/fullchain.pem
    Your key file has been saved at:
    /etc/letsencrypt/live/sldev10.com/privkey.pem
    Your cert will expire on 2018-12-13. To obtain a new or tweaked
    version of this certificate in the future, simply run certbot-auto
    again. To non-interactively renew all of your certificates, run
    “certbot-auto renew”

  • If you like Certbot, please consider supporting our work by:

    Donating to ISRG / Let’s Encrypt: https://letsencrypt.org/donate
    Donating to EFF: https://eff.org/donate-le

However, when go to the site via https protocol, the browser couldn’t recognize the certificate. What did I miss?


#2

Hi,

The manual plugin only obtained a certificate, but never help you installed it…

You would need to install it manually…

However, if you are using Apache or Nginx on Linux system that directly running the commands, you could use certbot certonly

Thank you


#3

It would probably be even better not to use certonly and to let Certbot install the certificate for you (just with certbot --apache or certbot --nginx)!

@thuynh, your server headers suggest that you’re running Apache with cPanel. Is that true? Could you try to get the certificate inside of cPanel using its built-in Let’s Encrypt integration instead of using Certbot at all?


#4

@thuynh : for schoens point… It’s better to request and install certificate directly in cPanel…
Follow this guide for cPanel autossl.

https://confluence1.cpanel.net/plugins/servlet/mobile?contentId=14001305#content/view/14001305

Thank you


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.