How to cancel one of the certificates

Not with me. I am a volunteer working for free on my own time. I don't want to be your personal assistant. If you show info in this forum the entire team of volunteers can help.

3 Likes

If you want to keep your info private there are some paid consultants who might be more helpful. schoen and webprofusion are both frequent contributors in this forum.

3 Likes

I understand, of course I understand that time is money and I will gladly pay for individual help if it comes into play. Thank you, I will try that.

1 Like

Currently when you check domain checker,
I have error
depth=0 CN = begravningstjanst.se
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = begravningstjanst.se
verify error:num=21:unable to verify the first certificate
verify return:1
CONNECTED(00000003)
OCSP response: no response sent

and result of apachectl -t -D DUMP_VHOSTS looks like:
VirtualHost configuration:
wildcard NameVirtualHosts and default servers:
*:443 is a NameVirtualHost
default server timecut.se (/etc/httpd/conf/httpd-ssl_www.timecut.se.conf:1)
port 443 namevhost timecut.se (/etc/httpd/conf/httpd-ssl_www.timecut.se.conf:1)
port 443 namevhost www.timecut.se (/etc/httpd/conf/httpd-ssl_www.timecut.se.conf:23)
port 443 namevhost begravningstjanst.se (/etc/httpd/conf/httpd-ssl_www.begravningstjanst.se.conf:1)
port 443 namevhost www.begravningstjanst.se (/etc/httpd/conf/httpd-ssl_www.begravningstjanst.se.conf:23)

Why individual server sections?
Can we have a look at that file?

And... should I ask: Where did the *:80 hosts go?

2 Likes
  1 <VirtualHost *:443>
  2       ServerAdmin fake@email.com
  3       ServerName begravningstjanst.se
  4 
  5       Redirect permanent / https://www.begravningstjanst.se/
  6         SSLEngine on
  7         SSLProtocol             -all +TLSv1.1 +TLSv1.2 -SSLv2 -SSLv3
  8         SSLHonorCipherOrder     on
  9         SSLCipherSuite       EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:EDH+aRSA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP    :!DSS:!RC4:!DHE
 10 
 11         #Server Certificate File:
 12         SSLCertificateFile "/etc/httpd/conf/cic_key/www.begravningstjanst.se/begravningstjanst_se.crt"
 13 
 14         #Server Private Key:
 15         SSLCertificateKeyFile "/etc/httpd/conf/cic_key/www.begravningstjanst.se/begravningstjanst.se.key"
 16 
 17         #Server Certificate Chain:
 18         SSLCertificateChainFile "/etc/httpd/conf/cic_key/www.begravningstjanst.se/DigiCertCA.crt"
 19 
 20 </VirtualHost>
 21 
 22 #Virtual Host Directive starts
 23 <VirtualHost *:443>
 24       ServerAdmin fake@email.com
 25       ServerName www.begravningstjanst.se
 26 
 27       ErrorLog logs/begravningstjanst.se.error.log
 28       CustomLog logs/begravningstjanst.se.access.log common
 30 DocumentRoot /var/www/html/begravningstjanst.se/public_html
 31 
 32 #SSL Engine Switch:
 33 SSLEngine on
 34 SSLProtocol             -all +TLSv1.1 +TLSv1.2 -SSLv2 -SSLv3
 35 SSLHonorCipherOrder     on
 36 SSLCipherSuite       EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:EDH+aRSA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!R    C4:!DHE
 37         #Server Certificate File:
 38         SSLCertificateFile "/etc/httpd/conf/cic_key/www.begravningstjanst.se/begravningstjanst_se.crt"
 39 
 40         #Server Private Key:
 41         SSLCertificateKeyFile "/etc/httpd/conf/cic_key/www.begravningstjanst.se/begravningstjanst.se.key"
 42 
 43         #Server Certificate Chain:
 44         SSLCertificateChainFile "/etc/httpd/conf/cic_key/www.begravningstjanst.se/DigiCertCA.crt"
 45 </VirtualHost>

Ok, I found the solution. The problem were with version of openssl and algorithm used by acme.sh.

1 Like