Obtaining a CA Bundle

dayoung · July 14, 2022, 8:58pm

I purchased a domain on Dynadot and it included a free SSL. I was able to get a Cert and a Key, however I need a CA bundle in order to integrate my website with my domain. How can I obtain my CA Bundle?

rg305 · July 14, 2022, 9:00pm

Hi @dayoung, and welcome to the LE community forum

Please show the cert file here.

NOT THE KEY FILE - NEVER SHOW THAT

dayoung · July 14, 2022, 9:26pm

Forgive me as I am new to this. How do show the cert file?

Bruce5051 · July 14, 2022, 9:38pm

On UNIX or even linux from the CLI
cat the_filename

On Windows from the CLI
type the_filename

mcpherrinm · July 14, 2022, 9:44pm

As an alternative, can you show us what instructions you followed to get your free SSL cert?
Usually you'd get the bundle as part of that process, and getting it after-the-fact is possible but a bit complicated since you have to figure out exactly what one to use.

dayoung · July 15, 2022, 2:01pm

Under my my dynadot account I went through the following prompts after I set up my DNS settings:

Free SSL

Unlock Account

Free SSL was generated

A Certificate and Private Key was generated (Lets Encrypt Authority X3)

This was all that was that was provided. Dynadot customer service stated that they do not they do not provide assistance with SSL set up as it is a grey area for them.

Osiris · July 15, 2022, 6:08pm

The "Let’s Encrypt Authority X3" intermediate certificate has retired for some time now, so it's impossible for them to provide a certificate signed by that intermediate.. See Chain of Trust - Let's Encrypt for the current and past intermediate certificates.

As asked before, can you share the certificate you've received? The file generated by DynaDot sometimes contains multiple certificates. A single certificate begins with the text -----BEGIN CERTIFICATE----- followed by some seemingly random characters and ends with -----END CERTIFICATE-----. This can repeat itself a few times for multiple certificates in a single bundle. Note that anything between -----BEGIN PRIVATE KEY----- and -----END PRIVATE KEY----- (sometimes also including "RSA") is PRIVATE and should NOT be shared with anyone.

system · August 14, 2022, 6:09pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.