Help after renew my cert

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:https://magiciptv.co.uk/billing/admin/login.php

I ran this command:sudo certbot --apache

It produced this output:

My web server is (include version):apache 2

The operating system my web server runs on is (include version):ubuntu 14,4 64 bit

My hosting provider, if applicable, is:contabo

I can login to a root shell on my machine (yes or no, or I don’t know):yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):no

It seems like your webserver is misconfigured and is not using your existing Let’s Encrypt certificates.

What’s this show:

apachectl -t -D DUMP_VHOSTS

Since you’re currently affected by rate limits you won’t be able to renew right now, but you shouldn’t need to.

OK.

So we know that Certbot has not actually installed any certificates into Apache yet.

We want to do that as your final goal, but we need to figure out what certificates are available to install. What does this show:

sudo certbot certificates

ok i think i sorted the cert for the first domain can i add cert to each domain in my server ?

Hi @gemihema

yes, that should work. Find your correct vHost (port 443), there should be something like

        SSLEngine on
        SSLCertificateKeyFile /etc/ssl.key/example.com.key
        SSLCertificateFile /etc/ssl.crt/example.com.crt

Instead of

        SSLCertificateKeyFile /etc/ssl.key/example.com.key
        SSLCertificateFile /etc/ssl.crt/example.com.crt

use (sample).

        SSLCertificateFile /etc/letsencrypt/live/www.magiciptv.co.uk/fullchain.pem
        SSLCertificateKeyFile /etc/letsencrypt/live/www.magiciptv.co.uk/privkey.pem

DocumentRoot "/var/www/html/magiciptv/" ServerName www.magiciptv.co.uk ServerAlias magiciptv.co.uk Include /etc/letsencrypt/options-ssl-apache.conf ServerAlias expressiptv.com SSLCertificateFile /etc/letsencrypt/live/magiciptv.co.uk/cert.pem SSLCertificateKeyFile /etc/letsencrypt/live/magiciptv.co.uk/privkey.pem SSLCertificateChainFile /etc/letsencrypt/live/magiciptv.co.uk/chain.pem DocumentRoot "/var/www/html/express/" ServerName www.expressiptv.com

what should i change there to add cert to expressiptv.com as well

Certbot should (ideally) be installing these for you - you shouldn’t need to make any configuration changes.

What does Certbot say when you run the following:

sudo certbot --apache --reinstall -d magiciptv.co.uk

root@magiciptv:/etc/apache2/sites-enabled# sudo certbot --apache --reinstall -d magiciptv.co.uk
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Cert not yet due for renewal
Keeping the existing certificate
Deploying Certificate to VirtualHost /etc/apache2/sites-enabled/000-default-le-ssl.conf

Please choose whether or not to redirect HTTP traffic to HTTPS, removing HTTP access.

1: No redirect - Make no further changes to the webserver configuration.
2: Redirect - Make all requests redirect to secure HTTPS access. Choose this for
new sites, or if you’re confident your site works on HTTPS. You can undo this
change by editing your web server’s configuration.

Select the appropriate number [1-2] then [enter] (press ‘c’ to cancel):

thing is i think i got magiciptv to wok ok now but all express iptv redirect to magic iptv so i think it s mising in configuration

Huh, looks like it’s already been setup - https://magiciptv.co.uk/

You can try the same command for your other domains.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.