GoDaddy shared hosting certbot

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: kofcchap6ca.org & test.kofcchap6ca.org

I ran this command: sudo certbot certonly –manual

It produced this output: - Congratulations! Your certificate and chain have been saved at:
/etc/letsencrypt/live/kofcchap6ca.org/fullchain.pem
Your key file has been saved at:
/etc/letsencrypt/live/kofcchap6ca.org/privkey.pem
Your cert will expire on 2021-04-07. To obtain a new or tweaked
version of this certificate in the future, simply run certbot
again. To non-interactively renew all of your certificates, run
"certbot renew"
==> Issue: Can't find any of the files for the SSL in /etc/letsenc.. directory as defined in the msg.

My web server is (include version): Apache Version 2.4.46

The operating system my web server runs on is (include version): Apache Version 2.4.46

My hosting provider, if applicable, is: GoDaddy Hosting Package Deluxe

I can login to a root shell on my machine (yes or no, or I don't know): No

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
cPanel Version 86.0 (build 30)
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 0.40.0

2 Likes

So you mean ls -l /etc/letsencrypt/live/kofcchap6ca.org/fullchain.pem returns an error? Even when ran with sudo?

3 Likes

@Osiris

If he's using GoDaddy shared hosting, he doesn't have root access and couldn't possibly have installed certbot fully!?

1 Like

@LouG

Welcome to the Let's Encrypt Community, Lou :slightly_smiling_face:

My burning question:
How did you manage to install certbot on a GoDaddy shared hosting account? As the resident GoDaddy guy, I am most intrigued by this.

Based on your certificate history, it appears that you've generated Let's Encrypt and ZeroSSL certificates at various points for about a year. Before that you generated a GoDaddy certificate, so I'm assuming that you haven't changed hosting providers. Currently, you have a Let's Encrypt certificate installed that only covers kofcchap6ca.org, but not www.kofcchap6ca.org, yet previously you had a Let's Encrypt certificate that covered both that was manually renewed.

Would I be correct in assuming that the maintenance of this website for the Knights of Columbus has traded hands a couple of times?

1 Like

Hi Osiris,

I was working with an article: https://cyberblogspot.com/how-to-get-a-free-ssl-certificate-for-godaddy/
that provided me with the steps needed to install SSL certificates on a GoDaddy Shared account. I don't have root access so I created the envir. needed on my windows 10 pro pc. I managed to get the latest copy of "Certbot" up and running. I launched from the cmd prompt the Linux terminal by running "bash"
I successfully ran 'certbot' manually, created the file directed and uploaded it to the website root as directed. This was needed to verify my domain.
I was then able to successfully create the SSL certificates as displayed by 'certbot' :

  • Congratulations! Your certificate and chain have been saved at:

/etc/letsencrypt/live/kofcchap6ca.org/fullchain.pem

Your key file has been saved at:

/etc/letsencrypt/live/kofcchap6ca.org/privkey.pem

Your cert will expire on 2021-04-07. To obtain a new or tweaked

version of this certificate in the future, simply run certbot

again. To non-interactively renew all of your certificates, run

"certbot renew"

So, I went looking for the files created in the /etc directory but there were none to be found.

I use cPanel and launched their terminal and was able to verify the /etc was present but none of the subfolders nor files were present.

I think that I am missing some steps that are not published in that doc. https://cyberblogspot.com/how-to-get-a-free-ssl-certificate-for-godaddy/

Sincerely,

2 Likes

I just read your message to Osiris that answers many of my questions. I've read your website's certificate history and ran several tools, so I'm more than happy to help you through this. It would be much easier if you came back to the forum though so as not to get confusing message fragments.

1 Like

The reason that you can't find the certificate and private key files in live is because they're symbolic links and not real files. You need to look in archive for the real files.

1 Like

The etc you are seeing in cPanel is under your account and not in the root.

1 Like

You have mixed content (linked/served via http instead of https) on the site that will cause it to appear to be insecure. You can identify that here:

1 Like

Hi Griffin,

I didn't. I created the envir. needed on my Windows PC and ran the
"certbot" manually. I created the file needed on the server and copied it
over to the server. Once this was done I completed the request to get the
SSL certificates and "certbot" reported that it successfully did so. Here
is that mgs received from "certbot" as displayed on the local terminal
running on my local pc:


- Congratulations! Your certificate and chain have been saved at: /etc/letsencrypt/live/kofcchap6ca.org/fullchain.pem

   Your key file has been saved at: /etc/letsencrypt/live/kofcchap6ca.org/privkey.pem

   Your cert will expire on 2021-04-07. To obtain a new or tweaked
   version of this certificate in the future, simply run certbot
   again. To non-interactively renew *all* of your certificates, run "certbot renew"

So, this dummy when over to the server and looked in the /etc/ directory
for the files so that they could be copied and used on the CPanel SSL
management screen.

2 Likes

I think your last message got cut off. Did you show a picture?

1 Like

No, I was working on my meeting for tonight and will need to table this until morning. I just received notification that my test.kofc... certificate has already expired. I knew this and not worried about it as it is simply my test machine. My outstanding question is, where do I find that archive folder to locate the real files that were generated by certbot?

By the way, thanks a whole bunch for your feedback. I will pick this up in the moring.
Lou

1 Like

The message was cut off but I edited it to show all the content. By the way, no picture attached.

1 Like