Install an Intermediate/chain certificate to link it to a trusted root certificate


#1

Hi guys,

I hope someone can advise me on this as it has me stumped (yes, I am a newbie)

I am running an installation using serverpilot running; ubuntu16.04.1 and has nginx running as the webserver. I installed the lets encrypt using this link https://www.linode.com/docs/security/ssl/install-lets-encrypt-to-create-ssl-certificates and then proceeded to install the certs using this link https://www.blogmehow.com/how-to-manually-install-ssl-on-serverpilot-free-plan-1331/

It returns that the cert is installed but that I need to install an intermediate/chain certificate to link to a trusted root certificate. If I replace the cert.pem with fullchain.pem it returns no ssl installed.

Any ideas?

Thanks
site is oceansauce.com

PS It should be noted that this is a multisite install so if there are any changes required to accomodate it, I am more than happy to listen.


#2

you obtain the intermediate certificate here
https://letsencrypt.org/certificates/

the syntax for nginx ssl configurations can be found here:

http://nginx.org/en/docs/http/configuring_https_servers.html


#3

The Serverpilot instructions mention two files

yourdomain_com.crt
yourdomain_com_ca-bundle-ssl-trusted.crt

The equivalent files produced by Certbot / letsencrypt will be named

fullchain.pem
chain.pem

You say that it “returns no ssl installed” but I don’t recognise this message. Can you flesh that out a bit more, what message exactly are you seeing, and where ?


#4

If yourdomain_com.crt is the leaf cert, which I’m not certain of, then the exact equivalent would be cert.pem (though using fullchain.pem is preferable for almost everyone).


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.