SSL certificate for lemurekikicia.synology.me

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: lemurekikicia.synology.me (DDNS)

I ran this command:

It produced this output:

My web server is (include version): Synology router SRM 1.2

The operating system my web server runs on is (include version): SRM 1.2

My hosting provider, if applicable, is: UPC Poland, dynamic IP

I can login to a root shell on my machine (yes or no, or I don’t know): Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
at hosting page - yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): n/a

Dear Let’s Encrypt Friends,

For now I have working page https://www.lemurekikicia.tk which has SSL certificate and by CNAME DNS redirect to lemurekikicia.synology.me page.
But more comfortable would be to have directly on lemurekikicia.synology.me SSL certificate which until now it was not possible to achive ( I thaught so ).

So is it possible with this standard DDNS provider (*.synology.me) ?

Best regards !

Hi @Twix

the Synology DSM has an integrated solution.

But I don't know if this

has Letsencrypt support.

But now, your port 80 is closed ( https://check-your-website.server-daten.de/?q=lemurekikicia.synology.me ):

Domainname Http-Status redirect Sec. G
http://lemurekikicia.synology.me/
89.73.181.195 -14 10.024 T
Timeout - The operation has timed out
http://www.lemurekikicia.synology.me/
89.73.181.195 -14 10.027 T
Timeout - The operation has timed out
https://lemurekikicia.synology.me/
89.73.181.195 200 0.943 N
Certificate error: RemoteCertificateNameMismatch
https://www.lemurekikicia.synology.me/
89.73.181.195 200 0.690 N
Certificate error: RemoteCertificateNameMismatch
http://lemurekikicia.synology.me/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
89.73.181.195 -14 10.026 T
Timeout - The operation has timed out
Visible Content:
http://www.lemurekikicia.synology.me/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
89.73.181.195 -14 10.030 T
Timeout - The operation has timed out
Visible Content:

So you have to open port 80 to use http-01 validation.

There is a Sectigo certificate.

CN=lemurekikicia.tk, OU=Free SSL, OU=Domain Control Validated
	28.05.2019
	27.08.2019
expires in 89 days	lemurekikicia.tk, www.lemurekikicia.tk - 2 entries

Checking your main domain there is the same Sectigo certificate.

And there are two Letsencrypt certificates ( https://check-your-website.server-daten.de/?q=lemurekikicia.tk#ct-logs ):

CertSpotter-Id Issuer not before not after Domain names LE-Duplicate next LE
935564945 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2019-05-28 08:43:51 2019-08-26 08:43:51 lemurekikicia.tk - 1 entries duplicate nr. 1
935373234 CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester 2019-05-28 00:00:00 2019-08-26 23:59:59 lemurekikicia.tk, www.lemurekikicia.tk - 2 entries

If it is the same host: Create one certificate with three domain names - non-www, www and the lemurekikica.synology.me - certificate (first add a dns entry with the missing lemurekikica.tk entry).

Hello Jurgen,

Thank you for a fast respond.
Regarding certificates it’s true. I thaught that create SSL cert. is not possible tht’s why I created this on external poage lemurekikicia.th and add CNAME DNS to lemurekikicia.synology.me.

Bout the question my is still the same, would be possible to have SSL cert directly on lemurekikicia.synology.me ?

Then the answer is the same. If you are able to install a Sectigo certificate, you are able to install a Letsencrypt certificate.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.