Please fill out the fields below so we can help you better.
My domain is:https://www.careon.de
I ran this command:
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don’t know):
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
hi @aschmid
I do not believe with the current description that anyone will be able to help you
Andrei
Apparently a lot of people think that the post title is the place to enter their question, and nothing in the body matters.
@aschmid, if you want a Let’s Encrypt cert, start here: https://letsencrypt.org/getting-started/
If you’re having problems, you’ll need to provide a bit more information (like answering those questions you ignored). You’ve issued a number of Let’s Encrypt certs for careon.de, going back over a year, but none so far for www.careon.de.
Hello,
it is not the point that I do not want to become active - it is just the point that I am new to the principles of certificates and how they work, so I thought this community would be the right place to raise this question
but…
What is the question???
my original question was: do I have to become active to prolonge the existing certificate
Your current certificate is from Symantec - and it will expire in four days.
So… maybe yes.
You should try and make your site “active”.
If that means using let’s encrypt to provide it with a new certificate…
Try beginning at the beginning: https://letsencrypt.org/getting-started/
when I look at https://www.careon.de to see the info about security, I see that the encryption is done
via letsEnrypt (see screenshot) I am not able to find information about Symantec.
https://dev.ssllabs.com/ssltest/analyze.html?d=www.careon.de&hideResults=on
Subject www.careon.de
Common names www.careon.de
Alternative names www.careon.de careon.de
Valid from Fri, 05 Jun 2015 00:00:00 UTC
Valid until Sat, 10 Jun 2017 23:59:59 UTC (expires in 4 days, 14 hours)
Issuer Symantec Class 3 EV SSL CA - G3
That may have been the question in your mind, but it didn't appear anywhere in your post, and neither did any other question. And I don't think any of us understands what you mean by "do I have to become active".
When I go to https://www.careon.de, I'm immediately redirected to https://careon.de. The latter site has a certificate from Let's Encrypt. But www.careon.de is serving a cert from Symantec:
$ openssl s_client -connect www.careon.de:443
CONNECTED(00000003)
depth=1 C = US, O = Symantec Corporation, OU = Symantec Trust Network, CN = Symantec Class 3 EV SSL CA - G3
verify error:num=20:unable to get local issuer certificate
verify return:0
---
Certificate chain
0 s:/1.3.6.1.4.1.311.60.2.1.3=DE/1.3.6.1.4.1.311.60.2.1.1=Stuttgart/businessCategory=Private Organization/serialNumber=HRB 382156/C=DE/ST=Baden-W\xC3\xBCrttemberg/L=T\xC3\xBCbingen/O=careon GmbH/OU=careon/CN=www.careon.de
i:/C=US/O=Symantec Corporation/OU=Symantec Trust Network/CN=Symantec Class 3 EV SSL CA - G3
1 s:/C=US/O=Symantec Corporation/OU=Symantec Trust Network/CN=Symantec Class 3 EV SSL CA - G3
i:/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primary Certification Authority - G5
---
It's an extended validation cert, which means you (or someone) paid a bit of money for it. And it expires on 10 June.
yes two sites - www just redirects.
with two separate IPs:
Name: www.careon.de
Address: 185.53.205.18
Name: careon.de
Address: 185.53.205.21
It would be difficult to say exactly what you should do…
A small step in that direction would be to understand why you have two IPs/servers.
Do you need both IPs/servers?
If not, then you may be able service both names from one IP and just one certificate (with two names).
If you do need two servers, then whomever setup the careon.de server may be able to help setup the www.careon.de server with a similar let’s encrypt cert for you.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.