No "chown" as acmeuser

Change that line to match the --webroot used in the command:
Like in the other vhost:

Thank you very much. Now the acme script reloaded successful.

The script ran without --test succesful. I restarted nginx. But I still cannot reach the website.

Do you have a tip more, where to look for the cause?

1 Like

Which web site exactly?
What message do you get?

It seems that you have two certs (RSA & ECC) in your nginx config:

    ssl_certificate     /etc/letsencrypt/rsa-certs/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/rsa-certs/privkey.pem;
    ssl_certificate     /etc/letsencrypt/ecc-certs/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/ecc-certs/privkey.pem;

But you have only renewed one of them.

You can renew the ECC cert OR remove it from your config.

Now it works. Thank you very much for your help and your patience.

Just one question more: In all that published information, is there something critical regarding security, which should be changed now.

1 Like

Not much.
I removed the file for nginx -T for good measure :slight_smile:
You can check your with: SSL Server Test: (Powered by Qualys SSL Labs)

Cheers from Miami :beers:


1 Like

nothing critical...
But you might benefit from adding DNS CAA records and OCSP stapling.

Thank you. I will have a look on it.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.