Enable LetsEncrypt in DirectAdmin


#1

Hi,

I followed these steps:

https://help.directadmin.com/item.php?id=648 ( How to enable LetsEncrypt)

Afterwards, on user level in directadmin I’ve clicked “Advanced Tools” -> “Install SSL Certificates”. The problem is that I only see:

  • Create your own self signed certificate
  • Create A Certificate Request

But I don’t see:

  • Free & automatic certificate from Let’s Encrypt

How come?

Version of CentOS:

# cat /etc/centos-release
CentOS release 6.7 (Final)

Version of directadmin:

# /usr/local/directadmin/directadmin c | grep -i 'version='
version=1.54.1
show_php_version=1

Settings of directadmin.conf

# cat /usr/local/directadmin/conf/directadmin.conf
SSL=0
addip=/usr/local/directadmin/scripts/addip
admin_helper=admin.site-helper.com
admindir=./data/admin
apache_public_html=0
apache_ver=2.0
apachecert=/etc/httpd/conf/ssl.crt/server.crt
apacheconf=/etc/httpd/conf/extra/directadmin-vhosts.conf
apacheips=/etc/httpd/conf/ips.conf
apachekey=/etc/httpd/conf/ssl.key/server.key
apachelogdir=/var/log/httpd/domains
apachemimetypes=/etc/mime.types
brute_dos_count=100
brute_force_log_scanner=1
brute_force_scan_apache_logs=0
brute_force_time_limit=120
brutecount=25
bruteforce=1
cacert=/usr/local/directadmin/conf/cacert.pem
cakey=/usr/local/directadmin/conf/cakey.pem
check_partitions=2
check_subdomain_owner=1
clear_blacklist_ip_time=0
clear_brute_log_entry_time=4
clear_brute_log_time=24
cloud_cache=0
demodocsroot=./data/skins/enhanced
docsroot=./data/skins/enhanced
dovecot=1
emailspoolvirtual=/var/spool/virtual
emailvirtual=/etc/virtual
**enable_ssl_sni=1**
enforce_difficult_passwords=0
ethernet_dev=venet0:0
exempt_local_block=0
frontpage_on=0
ftpconfig=/etc/proftpd.conf
ftppasswd=/etc/proftpd.passwd
ftpvhosts=/etc/proftpd.vhosts.conf
hide_brute_force_notifications=1
ip_brutecount=100
license=/usr/local/directadmin/conf/license.key
litespeed=0
log_rotate_size=5
logdir=/var/log/directadmin
logger=/usr/local/directadmin/logger
loghostname=0
login_history=10
logs_to_keep=5
lost_password=0
max_per_email_send_limit=-1
max_username_length=10
maxfilesize=10485760
mysqlconf=/usr/local/directadmin/conf/mysql.conf
namedconfig=/etc/named.conf
nameddir=/var/named
nginx=0
nginx_proxy=0
ns1=ns1.anony.nl
ns2=ns2.anony.nl
numservers=5
owsadm=/usr/local/frontpage/version5.0/bin/owsadm.exe
partition_usage_threshold=95
port=2222
pureftp=0
purge_spam_days=0
quota_partition=/
removeip=/usr/local/directadmin/scripts/removeip
reseller_helper=reseller.site-helper.com
secure_access_group=access
servername=srv1a.jbb-media.nl
serverpath=/usr/local/directadmin
session_minutes=60
skinsdir=./data/skins
sshdconfig=/etc/ssh/sshd_config
ssl_cipher=HIGH:!aNULL:!MD5
taskqueue=/usr/local/directadmin/data/task.queue
templates=/usr/local/directadmin/data/templates
ticketsdir=/usr/local/directadmin/data/tickets
timeout=60
tmpdir=../../../home/tmp
unified_ftp_password_file=1
user_brutecount=100
user_can_set_email_limit=1
user_helper=www.site-helper.com
userdata=./data/users
**letsencrypt=1**
login_keys_notify_on_creation=0
login_keys=1

Build rewrite_confs:

# ./build rewrite_confs
Checking to ensure /etc/httpd/conf/ssl.crt/server.ca is set.
Using 89.18.178.131 for your server IP
Restarting apache.
Stopping httpd:                                            [  OK  ]
Starting httpd:

Build update:

# ./build update
--2018-11-06 15:03:34--  http://files6.directadmin.com/services/custombuild/2.0/custombuild.tar.gz
Resolving files6.directadmin.com... 62.148.174.106, 2001:16e8:1:c:62:148:174:106
Connecting to files6.directadmin.com|62.148.174.106|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 202673 (198K) [application/x-gzip]
Saving to: `./custombuild.tar.gz'

100%[===================================================================================================================================================================================================>] 202,673     --.-K/s   in 0.02s

2018-11-06 15:03:34 (9.82 MB/s) - `./custombuild.tar.gz' saved [202673/202673]

Extracting custombuild.tar.gz...
custombuild/
custombuild/configure/
custombuild/configure/libxslt/
custombuild/configure/libxslt/configure.libxslt
custombuild/configure/ap2/
custombuild/configure/ap2/configure.php72
custombuild/configure/ap2/configure.php70
custombuild/configure/ap2/configure.php56
custombuild/configure/ap2/configure.modsecurity
custombuild/configure/ap2/configure.php54
custombuild/configure/ap2/configure.php53
custombuild/configure/ap2/configure.php55
custombuild/configure/ap2/conf/
custombuild/configure/ap2/conf/mime.types
custombuild/configure/ap2/conf/magic
custombuild/configure/ap2/conf/extra/
custombuild/configure/ap2/conf/extra/httpd-directories-new.conf
custombuild/configure/ap2/conf/extra/httpd-info.conf
custombuild/configure/ap2/conf/extra/httpd-vhosts.conf
custombuild/configure/ap2/conf/extra/httpd-manual.conf
custombuild/configure/ap2/conf/extra/httpd-deflate.conf
custombuild/configure/ap2/conf/extra/httpd-autoindex.conf
custombuild/configure/ap2/conf/extra/httpd-ssl.conf
custombuild/configure/ap2/conf/extra/httpd-default.conf
custombuild/configure/ap2/conf/extra/httpd-modsecurity.conf
custombuild/configure/ap2/conf/extra/httpd-mpm.conf
custombuild/configure/ap2/conf/extra/httpd-languages.conf
custombuild/configure/ap2/conf/extra/httpd-fcgid.conf
custombuild/configure/ap2/conf/extra/httpd-mpm.conf_2.0
custombuild/configure/ap2/conf/extra/httpd-multilang-errordoc.conf
custombuild/configure/ap2/conf/extra/httpd-directories-old.conf
custombuild/configure/ap2/conf/extra/httpd-userdir.conf
custombuild/configure/ap2/conf/extra/directadmin-vhosts.conf
custombuild/configure/ap2/conf/extra/httpd-alias.conf
custombuild/configure/ap2/conf/extra/httpd-dav.conf
custombuild/configure/ap2/conf/httpd.conf_2.0
custombuild/configure/ap2/conf/httpd.conf
custombuild/configure/ap2/cert_config.txt
custombuild/configure/ap2/configure.php71
custombuild/configure/ap2/configure.apache
custombuild/configure/spamassassin/
custombuild/configure/spamassassin/exim.spamd.conf
custombuild/configure/systemd/
custombuild/configure/systemd/dependencies/
custombuild/configure/systemd/dependencies/clamd_nofork.patch
custombuild/configure/systemd/dependencies/httpd-2.4.10-systemd.patch
custombuild/configure/systemd/dependencies/httpd-2.4.3-mod_systemd.patch
custombuild/configure/systemd/nginx.service
custombuild/configure/systemd/named.service.debian
custombuild/configure/systemd/php-fpm.service
custombuild/configure/systemd/mysqld.service.debian
custombuild/configure/systemd/mysql.service
custombuild/configure/systemd/proftpd.service
custombuild/configure/systemd/clamd.service.debian
custombuild/configure/systemd/scripts/
custombuild/configure/systemd/scripts/pureftpd_startscript
custombuild/configure/systemd/scripts/dovecot_prestartscript
custombuild/configure/systemd/scripts/mysql-wait-ready
custombuild/configure/systemd/clamd.service
custombuild/configure/systemd/mysqld57.service
custombuild/configure/systemd/freshclam.service
custombuild/configure/systemd/httpd.service
custombuild/configure/systemd/spamassassin.service
custombuild/configure/systemd/dovecot.socket
custombuild/configure/systemd/named.service
custombuild/configure/systemd/dovecot.service
custombuild/configure/systemd/pure-uploadscript.service
custombuild/configure/systemd/exim.service
custombuild/configure/systemd/rspamd.service
custombuild/configure/systemd/mariadb.service
custombuild/configure/systemd/named-setup-rndc.service
custombuild/configure/systemd/pure-ftpd.service
custombuild/configure/systemd/mysqld.service
custombuild/configure/clamav/
custombuild/configure/clamav/runav.pl
custombuild/configure/clamav/configure.clamav
custombuild/configure/clamav/runav.conf
custombuild/configure/libxml2/
custombuild/configure/libxml2/configure.libxml2
custombuild/configure/dovecot/
custombuild/configure/dovecot/configure.dovecot
custombuild/configure/dovecot/dovecot.conf
custombuild/configure/dovecot/conf/
custombuild/configure/dovecot/conf/protocols.conf
custombuild/configure/dovecot/conf/lmtp_mail_plugins.conf
custombuild/configure/dovecot/conf/mail_plugins.conf
custombuild/configure/dovecot/conf/ip.conf
custombuild/configure/dovecot/conf/imap_mail_plugins.conf
custombuild/configure/dovecot/conf/ssl.conf
custombuild/configure/dovecot/conf/mail_max_userip_connections.conf
custombuild/configure/dovecot/conf/maildir_copy_with_hardlinks.conf
custombuild/configure/dovecot/conf/limits.conf
custombuild/configure/dovecot/conf/lmtp.conf
custombuild/configure/dovecot/conf/namespace_private.conf
custombuild/configure/dovecot/conf.d/
custombuild/configure/dovecot/conf.d/90-quota.conf
custombuild/configure/dovecot/conf.d/90-sieve.conf
custombuild/configure/nginx_reverse/
custombuild/configure/nginx_reverse/configure.nginx
custombuild/configure/nginx_reverse/configure.modsecurity
custombuild/configure/nginx_reverse/conf/
custombuild/configure/nginx_reverse/conf/webapps_settings.conf
custombuild/configure/nginx_reverse/conf/nginx-vhosts.conf
custombuild/configure/nginx_reverse/conf/nginx_limits.conf
custombuild/configure/nginx_reverse/conf/nginx-events.conf
custombuild/configure/nginx_reverse/conf/nginx-info.conf
custombuild/configure/nginx_reverse/conf/nginx-proxy.conf
custombuild/configure/nginx_reverse/conf/nginx.conf
custombuild/configure/nginx_reverse/conf/nginx-userdir.conf
custombuild/configure/nginx_reverse/conf/nginx-gzip.conf
custombuild/configure/nginx_reverse/conf/nginx-modsecurity.conf
custombuild/configure/nginx_reverse/conf/nginx-defaults.conf
custombuild/configure/pureftpd/
custombuild/configure/pureftpd/pure-ftpd.conf
custombuild/configure/pureftpd/configure.pureftpd
custombuild/configure/pureftpd/pureftpd_uploadscan.sh
custombuild/configure/rspamd/
custombuild/configure/rspamd/exim.spamd.conf
custombuild/configure/suhosin/
custombuild/configure/suhosin/suhosin.ini
custombuild/configure/suhosin/php_uploadscan.sh
custombuild/configure/curl/
custombuild/configure/curl/configure.curl
custombuild/configure/proftpd/
custombuild/configure/proftpd/configure.proftpd
custombuild/configure/proftpd/conf/
custombuild/configure/proftpd/conf/proftpd.conf
custombuild/configure/fpm/
custombuild/configure/fpm/configure.php72
custombuild/configure/fpm/configure.php70
custombuild/configure/fpm/configure.php56
custombuild/configure/fpm/configure.php54
custombuild/configure/fpm/configure.php53
custombuild/configure/fpm/configure.php55
custombuild/configure/fpm/conf/
custombuild/configure/fpm/conf/php-fpm.conf.53
custombuild/configure/fpm/conf/php-fpm.conf.54
custombuild/configure/fpm/conf/php-fpm.conf.56
custombuild/configure/fpm/conf/php-fpm.conf.71
custombuild/configure/fpm/conf/php-fpm.conf.70
custombuild/configure/fpm/conf/php-fpm.conf.55
custombuild/configure/fpm/conf/php-fpm.conf.72
custombuild/configure/fpm/configure.php71
custombuild/configure/opcache/
custombuild/configure/opcache/opcache.ini
custombuild/configure/fastcgi/
custombuild/configure/fastcgi/configure.php72
custombuild/configure/fastcgi/configure.php70
custombuild/configure/fastcgi/fcgid70.sh
custombuild/configure/fastcgi/configure.php56
custombuild/configure/fastcgi/fcgid71.sh
custombuild/configure/fastcgi/fcgid72.sh
custombuild/configure/fastcgi/fcgid53.sh
custombuild/configure/fastcgi/configure.php54
custombuild/configure/fastcgi/configure.php53
custombuild/configure/fastcgi/configure.php55
custombuild/configure/fastcgi/fcgid54.sh
custombuild/configure/fastcgi/fcgid56.sh
custombuild/configure/fastcgi/fcgid55.sh
custombuild/configure/fastcgi/configure.php71
custombuild/configure/custombuild/
custombuild/configure/custombuild/eol_os.txt
custombuild/configure/litespeed/
custombuild/configure/litespeed/configure.php72
custombuild/configure/litespeed/configure.php70
custombuild/configure/litespeed/configure.php56
custombuild/configure/litespeed/configure.php54
custombuild/configure/litespeed/configure.php53
custombuild/configure/litespeed/configure.php55
custombuild/configure/litespeed/configure.php71
custombuild/configure/suphp/
custombuild/configure/suphp/configure.suphp
custombuild/configure/suphp/configure.php72
custombuild/configure/suphp/configure.php70
custombuild/configure/suphp/configure.php56
custombuild/configure/suphp/configure.php54
custombuild/configure/suphp/configure.php53
custombuild/configure/suphp/configure.php55
custombuild/configure/suphp/configure.php71
custombuild/configure/nginx/
custombuild/configure/nginx/configure.nginx
custombuild/configure/nginx/configure.modsecurity
custombuild/configure/nginx/conf/
custombuild/configure/nginx/conf/webapps_settings.conf
custombuild/configure/nginx/conf/nginx-vhosts.conf
custombuild/configure/nginx/conf/nginx_limits.conf
custombuild/configure/nginx/conf/nginx-events.conf
custombuild/configure/nginx/conf/nginx-info.conf
custombuild/configure/nginx/conf/nginx.conf
custombuild/configure/nginx/conf/nginx-userdir.conf
custombuild/configure/nginx/conf/nginx-gzip.conf
custombuild/configure/nginx/conf/nginx-modsecurity.conf
custombuild/configure/nginx/conf/nginx-defaults.conf
custombuild/build

Build letsencrypt:

# ./build letsencrypt
Downloading             letsencrypt.sh...
--2018-11-06 15:05:10--  http://files6.directadmin.com/services/custombuild/all/letsencrypt/letsencrypt.sh.1.1.11
Resolving files6.directadmin.com... 62.148.174.106, 2001:16e8:1:c:62:148:174:106
Connecting to files6.directadmin.com|62.148.174.106|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 30401 (30K) [application/x-troff-man]
Saving to: `/usr/local/directadmin/custombuild/letsencrypt.sh'

100%[===================================================================================================================================================================================================>] 30,401      --.-K/s   in 0.003s

2018-11-06 15:05:10 (9.11 MB/s) - `/usr/local/directadmin/custombuild/letsencrypt.sh' saved [30401/30401]

Let's encrypt client 1.1.11 has been installed.

This is also correct:

SSL is currently **enabled** for this domain. You can disable it **here**.

But in the end, I don’t see: “Free & automatic certificate from Let’s Encrypt”? I think I just followed all steps correctly?


#2

Hi,

Did you actually wrap the above line inside ** ?

You might want to check if SSL is enabled for each user too…
https://support.yourwebhoster.eu/en-us/article/43-how-to-enable-ssl-for-every-user-in-directadmin

https://support.yourwebhoster.eu/en-us/article/44-how-to-enable-let-s-encrypt-in-directadmin

Thank you


#3

Thanks! The two stars ** are not part of the code. I’ve tried to make the following bold:

enable_ssl_sni=1
letsencrypt=1

Apparently it doesn’t work correctly on this forum. SSL is enabled for the user, see:

SSL is currently enabled for this domain. You can disable it here.

I just followed the extra steps 4,5,6 here: https://support.yourwebhoster.eu/en-us/article/44-how-to-enable-let-s-encrypt-in-directadmin

However, it doesn’t change anything, same problem.


#4

Yeah… Then I would highly suggest you to ask this on DirectAdmin forum or contact their support crew…
Since that’s all I could do / suggest…

Thank you


#5

Thanks again. At the same moment I placed it on this forum, I also placed it on the DirectAdmin forum. I think that post is waiting for approval, but it’s a bit strange because “My Activity” on vBulletin doesn’t show anything, but maybe that’s just bad usability of vBulletin. I’ve no expercience with vBulletin, but when I placed the post I got a message about “approval”.


#6

In the end, it appeared that I checked the skin the wrong way. The skin was not set to “enhanced” and that was the problem.