Server not using installed Certbot certificate

Help
1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: robin-kok.nl

I ran this command: Everything from: https://certbot.eff.org/lets-encrypt/centosrhel7-apache.html

It produced this output: Installed cerificate, but not using it.

My web server is (include version): Cloud Server

The operating system my web server runs on is (include version): CentOS 7.5

My hosting provider, if applicable, is: Neostrada | Powered by Totaalcloud.nl

I can login to a root shell on my machine (yes or no, or I don’t know): Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): DirectAdmin

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): 0.38.0

EDIT: It’s currently using a self signed certificate.

2

Hi @Cookooloo

that's too unspecific. The first part is the installation. But what was your certificate creation command?

And checking your domain you have created the wrong certificate - https://check-your-website.server-daten.de/?q=robin-kok.nl

Issuer not before not after Domain names LE-Duplicate next LE
Let's Encrypt Authority X3 2019-09-26 2019-12-25 robin-kok.nl - 1 entries duplicate nr. 1

The certificate has only one domain name, not two.

So first step: What says

apachectl -S
1 Like
3

@JuergenAuer

The commands I ran:

yum install epel-release
yum -y install yum-utils
yum-config-manager --enable rhui-REGION-rhel-server-extras rhui-REGION-rhel-server-optional
sudo yum install certbot
sudo certbot certonly --webroot

Also, I ran apachectl -S and it gives me a lot of information.
I’ll type it out and edit this post.

apachectl -S:

default server localhost
namevhost localhost
namevhost www.robin-kok.nl
alias www.robin-kok.nl
alial robin-kok.nl
namevhost www.poortwachter.robin-kok.nl
alias www.poortwachter.robin-kok.nl
alias poortwachter.robin-kok.nl

all of these have 2 entries, with port 80 and port 443.

Do I need to add more?

4

That's

your answer. certonly doesn't create a port 443 vHost and doesn't install a certificate.

Last step: Use

sudo certbot -d robin-kok.nl -d www.robin-kok.nl --apache

instead.

But first your vHost configuration is required to see, if you have a correct port 80 vHost with both domain names.

1 Like
5

@JuergenAuer

Does this also get the subdomain?

Message:

The requested apache plugin does not appear to be installed

6

Please read

https://certbot.eff.org/docs/using.html

7

Hi @JuergenAuer,

I tried some more steps but I’m getting a new error now:

Command:
sudo certbot -d robin-kok.nl -d www.robin-kok.nl --apache

Error:

The apache plugin is not working; there may be problems with your existing configuration.
The error was: MisconfigurationError(‘Error while running apachect1 configtest.\n\nhttpd: Syntax error on line 52 of /etc/httpd/conf/httpd.conf : Syntax error on line 6 of /etc/httpd/conf/extra/httpd-phpmodules.conf : Cannot load /usr/lib/apache/mod_mpm_prefork.so into server: /usr/lib/apache/mod_mpm_prefork.so: indefined symbol: ap_set_listencbratio\n’,)

8

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.