Hi, I have a problem installing the certificates with certbot.
So far no SSL on my machine. I wanted to change that now.
I have according to instructions from here ( https://certbot.eff.org/#debianwheezy-apache ) certbot downloaded and installed.
The certificates for the desired domains were also created. However, certbot has not changed anything in Apache configuration. There was neither a vhost for ssl nor the basic settings (CIPHER, etc.) were established.
/var/log/letsencrypt/letsencrypt.log
`2017-07-05 03:41:03,227:DEBUG:certbot.storage:Writing new config /etc/letsencrypt/renewal/mydomain.de.conf.
2017-07-05 03:41:03,228:DEBUG:certbot.reporter:Reporting to user: Congratulations! Your certificate and chain have been saved at /etc/letsencrypt/live/mydomain.de/fullchain.pem. Your cert will expire on 2017-10-03. To obtain a new or tweaked version of this certificate in the future, simply run certbot-auto again with the “certonly” option. To non-interactively renew all of your certificates, run "certbot-auto renew"
2017-07-05 03:41:03,242:DEBUG:certbot.reverter:Creating backup of /etc/apache2/sites-enabled/www_mydomain_de-le-ssl.conf
2017-07-05 03:41:03,254:INFO:certbot_apache.configurator:Created an SSL vhost at /etc/apache2/sites-enabled/www_mydomain_de-le-ssl.conf
2017-07-05 03:41:03,298:INFO:certbot_apache.configurator:Enabled Apache ssl module
2017-07-05 03:41:03,342:WARNING:certbot_apache.parser:Error in checking parameter list: Syntax error on line 12 of /etc/apache2/sites-enabled/www_mydomain_de-le-ssl.conf:
SSLCertificateFile: file ‘/etc/apache2/insert_cert_file_path’ does not exist or is empty
2017-07-05 03:41:03,344:DEBUG:certbot.error_handler:Encountered exception:
Traceback (most recent call last):
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/client.py”, line 439, in deploy_certificate
fullchain_path=fullchain_path)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/configurator.py”, line 250, in deploy_cert
self.prepare_server_https(“443”)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/configurator.py”, line 709, in prepare_server_https
self.prepare_https_modules(temp)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/configurator.py”, line 803, in prepare_https_modules
self.enable_mod(“ssl”, temp=temp)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/configurator.py”, line 1772, in enable_mod
self.parser.update_runtime_variables()
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/parser.py”, line 109, in update_runtime_variables
stdout = self._get_runtime_cfg()
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/parser.py”, line 154, in _get_runtime_cfg
"Apache is unable to check whether or not the module is "
MisconfigurationError: Apache is unable to check whether or not the module is loaded because Apache is misconfigured.
2017-07-05 03:41:03,344:DEBUG:certbot.error_handler:Calling registered functions
2017-07-05 03:41:03,381:DEBUG:certbot.reporter:Reporting to user: Unable to install the certificate
2017-07-05 03:41:03,381:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
File “/root/.local/share/letsencrypt/bin/letsencrypt”, line 11, in
sys.exit(main())
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/main.py”, line 743, in main
return config.func(config, plugins)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/main.py”, line 604, in run
_install_cert(config, le_client, domains, new_lineage)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/main.py”, line 469, in _install_cert
path_provider.cert_path, path_provider.chain_path, path_provider.fullchain_path)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/client.py”, line 439, in deploy_certificate
fullchain_path=fullchain_path)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/configurator.py”, line 250, in deploy_cert
self.prepare_server_https(“443”)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/configurator.py”, line 709, in prepare_server_https
self.prepare_https_modules(temp)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/configurator.py”, line 803, in prepare_https_modules
self.enable_mod(“ssl”, temp=temp)
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/configurator.py”, line 1772, in enable_mod
self.parser.update_runtime_variables()
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/parser.py”, line 109, in update_runtime_variables
stdout = self._get_runtime_cfg()
File “/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot_apache/parser.py”, line 154, in _get_runtime_cfg
"Apache is unable to check whether or not the module is "
MisconfigurationError: Apache is unable to check whether or not the module is loaded because Apache is misconfigured.
`
If I copy the previous vhost copy and change accordingly (Port 80 -> 443, SSLEngine On, SSLCertificateFile, SSLCertificateKeyFile and SSLCertificateChainFile) I get a restart of the apache error message.
What can / should I do now, so that my domains can also be reached via https?
Thank you for your help in advance.
fbr
PS: Sorry for my bad english :-/