Peer’s Certificate issuer is not recognized

astatium135 · February 13, 2017, 12:09pm

Sorry of my English

My control panel: ISPmanager

I generate a certificate from this website for using certbot-auto in manual mode and install this using create SSL->existing, where sertificate name - watch-market.net, private key - privkey.pem, certificate - cert.pem, chain of certificate - chain.pem, after this select this in option of site. https://watch-market.net/ show me a error

https://watch-market.net/

Peer’s Certificate issuer is not recognized.

HTTP Strict Transport Security: false
HTTP Public Key Pinning: false

Certificate chain:

Please, explain me cause of error and how to fix it.

serverco · February 13, 2017, 12:29pm

You are not using the certificate issued by Let’s Encrypt.

You are using a self signed certificate ( hence the error).

$ certinfo watch-market.net 
getting cert from server - watch-market.net

Certificate chain
 0 s:/C=XX/ST=XX/L=XX/O=XX/OU=XX/emailAddress=office@megainfo.com.ua/CN=watch-market.net
   i:/C=XX/ST=XX/L=XX/O=XX/OU=XX/emailAddress=office@megainfo.com.ua/CN=watch-market.net
---
Certificate:
Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX/emailAddress=office@megainfo.com.ua, CN=watch-market.net
Not Before: Feb  8 11:12:18 2017 GMT
Not After : Feb  8 11:12:18 2018 GMT
Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX/emailAddress=office@megainfo.com.ua, CN=watch-market.net
Public Key Algorithm: rsaEncryption
DNS:watch-market.net, DNS:www.watch-market.net, IP Address:91.234.33.22

Possibly you didn’t restart nginx after installing the certificate ?

I also note, that the certificate you pasted above is not a Let’s Encrypt chain file - so perhaps you installed the wrong certs ?

system · March 15, 2017, 12:29pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.