Icon warning Certificate Chain Complete? A valid Root CA Certificate could not be located

My domain is: node2.datanodes.to

My web server is (include version): Apache/2.4.37


certbot 1.22.0

Greetings dear community members. i am having an issue with my subdomain SSL.

When i issue SSL with certbot --apache and choose both my www and non www node2.datanodes.to subdomain, it generates the ssl Successfully.

Deploying certificate
Successfully deployed certificate
Successfully deployed certificate
Congratulations! You have successfully enabled HTTPS on https://node2.datanodes.to and https://www.node2.datanodes.to

But in the Browser my non-www shows Insecure while the www one is secure and testing here

Then i did certbot renew --dry-run and for the first time it gave me this error

Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Domain: node2.datanodes.to
Type: dns
Detail: During secondary validation: DNS problem: SERVFAIL looking up CAA for datanodes.to - the domain's nameservers may be malfunctioning

But after another dry run i got

Processing /etc/letsencrypt/renewal/node2.datanodes.to.conf

Simulating renewal of an existing certificate for node2.datanodes.to and www.node2.datanodes.to

Congratulations, all simulated renewals succeeded:
/etc/letsencrypt/live/node2.datanodes.to/fullchain.pem (success)

But still the sub-domain is insecure, can someone please help me out. I did alot of google before coming here so that i dont waste anyones time by looking into other threads first.

Just fixed the issue, i had to include this in my /etc/httpd/conf.d/ssl.conf

	  SSLCertificateFile /etc/letsencrypt/live/node2.datanodes.to/fullchain.pem

SSLCertificateKeyFile /etc/letsencrypt/live/node2.datanodes.to/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.