Let's Encrypt on Synology

Hi@all

I have successfully set up Owncloud on a Synology NAS with Apache 2.4 on DSM 6.2, it was also straight forward to set up Let’s Encrypt for my dynamic DNS account but:

I get a certtificate validation for https://my-dynamic-dns.net but it fails for https://my-dynamic-dns.net/owncloud.
Here I get a certificate error.
How can I solve this ?

Hi @thafener

please share your domain name.

Ok it is medifornet.ddns.net and medifornet.ddns.net/nextcloud

Some parts are good, some are bad.

The main domain ( https://check-your-website.server-daten.de/?q=medifornet.ddns.net ):

CN=medifornet.ddns.net
	06.05.2019
	04.08.2019
expires in 78 days	medifornet.ddns.net - 1 entry

The certificate is good. And it is used.

Domainname Http-Status redirect Sec. G
http://medifornet.ddns.net/
134.3.124.232 200 0.134 H
https://medifornet.ddns.net/
134.3.124.232 200 0.683 I
http://medifornet.ddns.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
134.3.124.232 404 0.120 A
Not Found
Visible Content: © 2019 Synology Inc.

Same with the subfolder ( https://check-your-website.server-daten.de/?q=medifornet.ddns.net%2Fnextcloud ): It's possible to use another server to manage the subfolder, but that's not there.

Domainname Http-Status redirect Sec. G
http://medifornet.ddns.net/nextcloud
134.3.124.232 301 Nextcloud 0.087 D
Nextcloud 302 Nextcloud 0.253 D
Nextcloud 200 0.480 H
Nextcloud
134.3.124.232 301 Nextcloud 0.506 B
Nextcloud 302 Nextcloud 0.527 B
Nextcloud 200 0.710 B

The error (both versions): You don't have redirects http -> https.

So your browser may have cached the https version of /, so you see that.

But your subfolder https version isn't cached, so you see the http version.

http + subfolder is redirected to http + subfolder + login, not to https. So this isn't encrypted.

Ok thank you very much for the analysis. What can I do to solve this, here I mean to secure the subfolder ?

As written. You don’t have redirects. So add these http -> https.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.