I installed the certificate to my domain and it went success. Even I can verify the certificate on SSL Labs but in browser it shows No Secure connection.
My domain is torqcart.net
Can anyone help please?
It looks as if you are using http on port 443, not https
How have you configured your apache for https ? can you paste the config ?
That's fine now.
The problem what I'm seeing now, is: HTTPS redirects to HTTP.. Usually it's the other way around 
It’s got the right, valid. cert though 
`<IfModule mod_ssl.c>
<VirtualHost *:443>
# The ServerName directive sets the request scheme, hostname and port that
# the server uses to identify itself. This is used when creating
# redirection URLs. In the context of virtual hosts, the ServerName
# specifies what hostname must appear in the request’s Host: header to
# match this virtual host. For the default virtual host (this file) this
# value is not decisive as it is used as a last resort host regardless.
# However, you must set it for any further virtual host explicitly.
#ServerName torqcart.net
ServerAdmin webmaster@localhost
DocumentRoot /var/www/html/torqcart
# Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
# error, crit, alert, emerg.
# It is also possible to configure the loglevel for particular
# modules, e.g.
#LogLevel info ssl:warn
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
# For most configuration files from conf-available/, which are
# enabled or disabled at a global level, it is possible to
# include a line for only one particular virtual host. For example the
# following line enables the CGI configuration for this host only
# after it has been globally disabled with "a2disconf".
#Include conf-available/serve-cgi-bin.conf
SSLCertificateFile /etc/letsencrypt/live/torqcart.net/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/torqcart.net/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf
ServerName torqcart.net
SSLCertificateChainFile /etc/letsencrypt/live/torqcart.net/chain.pem
I have given above two references. Screenshot consist of non-ssl conf file and the code pasted is of ssl generated by letsencrypt.
`
At the end of your SSL config, do you have a rewrite rule ? you haven’t pasted that far, but I’m guessing there is a rewrite there to http, which should be removed.
No.
Below is the remaining code which wasn’t pasted.
vim: syntax=apache ts=4 sw=4 sts=4 sr noet
OK, do you have a rewrite in your .htaccess ? if not, what rewrites do you have elsewhere in your apache configs ?
I have found the .htaccess under my application which is reqwriting the rule. After blocking it certificate started working. Can you please https://torqcart.net at your end if it shows the secure mode?
Yes, that cert is working fine 
as a note, it doesn’t work for www.torqcart.net (which you may want for anyone who adds the www)
I would need the guidelines to add www. Can you help?
How did you create the original cert ? with certbot ? or some other client ? What specific command did you use ?
I used the certbot to create the original cert.
I don't know what method you used ( webroot ? certonly ? auto ? ) so can't really tell you how to modify the command.
Hi
I have used the Auto method.
You still haven’t provided the specific command you used.
Generally just adding “–expand -d torqcart.net,www.torqcart.net” onto the command you used originally should work.
1 Like
Thanks for helping It worked!
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.