Hi and thanks again,
ok I will try to do … only a question before starting again (I wiil do later),
but if instead of copying the files I create symlink files in /jet/prs/le/
that point to the source files ? What do you think about ?
You will have the same problem, the user starting the services is not root so the user can't read neither the fullchain.pem nor privkey.pem files, the only option would be to change the perms of dirs /etc/letsencrypt/archive/ and /etc/letsencrypt/live/ to be accesible by everyone (755) but don't do that.
Cheers,
sahsanu
1 Like
Ok good, thank you very much for your cooperation.
Cheers,
Riccardo
1 Like
Hallo my friend, problem solved …
without your help I could not have done it, thank you very much
I did this:
first stop all services to avoid the nginx.pid file problem
then
sudo cp /etc/letsencrypt/live/odisseo.io/fullchain.pem /jet/etc/pki/tls/certs
sudo cp /etc/letsencrypt/live/odisseo.io/privkey.pem /jet/etc/pki/tls/private/
sudo chmod 600 /jet/etc/pki/tls/private/privkey.pem
sudo chmod 644 /jet/etc/pki/tls/certs/fullchain.pem
sudo chown user:group /jet/etc/pki/tls/private/privkey.pem
sudo chown user:group /jet/etc/pki/tls/certs/fullchain.pem
() user:group
() as user = [my lemp stack user name]
(*) as group =[my lemp stack group name]
at the end I have set up the new params into deafult_ssl.vhost
start all services :
Great Sahsanu 
thanks again
Cheers,
Riccardo
1 Like
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.