.webmail is not a valid TLD. Let's Encrypt (and all other public CAs) is only allowed to issue certificates for official, IANA-registered TLDs. You'll have to use a real domain.
Thanks - pastebin.com is much easier 
The error is âError creating new authz :: Name does not end in a public suffixâ
It looks like you included in a whole range of domains ( I counted 10 in that log). The last of which is the domain âhorde.webmailâ which is not a valid / real domain that you can obtain a certificate for - hence why it is failing.
./letsencrypt-auto --verbose --agree-tos --email myname@domain.com certonly --renew-by-default --webroot --webroot-path /var/www/vhosts/domain.com/httpdocs/ -d domain.com -d www.domain.com
and after running it i got the congrats message.
Then still i cannot see the SSL in my website, DO i miss any other steps ?
You have asked for âcertonlyâ - so it has just obtained the certicate and placed it on your server (in /etc/letsencrypt/live/domainname )
You will need to configure apache to use the certificate.
if we need to do it automatically how we need to do ?
Do you have any steps for apache configuration ?
Do you have any form of âcontrol panelâ on the server ? or is it a pure apache server ?
How familiar are you with editing apache configs ?
yes, i have parallel plesk control panel, also familiar with editing apache
There are a number of options.
-
You can use the plesk plugin for letsencrypt - https://github.com/plesk/letsencrypt-plesk
-
Depending on the version of plesk you are running, you can copy the certificates into there
Log into plesk
From the menu on the left, select Domains.
Click on the domain name that the certificate is issued for.
Click Certificates.
Upload your certificates
Select Web Hosting Settings.
At the top of the page, change the SSL Certificate field to the certificate you just installed and then click OK.
Stop and start the Apache process.
- You could manually configure apache - that may conflicy slightly with plesk though, so Iâd recommend one of the above methods.
i thing you mean to upload .pem files in live folderâŚ
No. I meant that the certificates are generated by certbot and stored in the etc/letsencrypt/live/domainname folder.
You will need to either configure apache to use them from that location, or you need to copy them into the correct location for plesk.
You can download them from the etc/letsencrypt/live/domainname and then upload them into plesk.
yes it is .pem extension
there is no .crt file
There should be several .pem files.
cert.pem is the domain certificate
prikey.pem is the private key
chain.pem is the CA certificate
fullchain.pem contains bothe the domain and the CA certificates.
Error: Unable to find the appropriate private key for the certificate.
When i upload getting this error. Do we need to convert .pem to.crt ?
Is there any letencrypt command which is will do this part too
I tried plesk plugin and it give success message, but in backend csr is missing.
The format is just plain text - there is no difference, only the extensions.
The private key is in privkey.pem.
As above, if you want to automate it, you may be better using the plesk plugin.
yes i used plesk plugin, but it is showing CRT is not supplied.
I tried to install in another domain using plugin
but when i take https:// it goes to www. domain
But when i check using ssl, it shows letsencrypts installed
Thanks you all for your support! i finally installed. and also learned a new thing!!
I am first time getting a support for the first time from a community like this. Sorry for disturbing you all with my silly questions
1 Like