Website only opens with www, no support when www is omitted

Might need to specify an installer plugin

certbot --apache

TWO dashes :face_with_raised_eyebrow:

11 Likes

I ran the below command :slight_smile:
certbot certonly

Here is the below output, please which option would be appropriate for my corrections.

Saving debug log to /var/log/letsencrypt/letsencrypt.log

How would you like to authenticate with the ACME CA?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: Spin up a temporary webserver (standalone)
2: Place files in webroot directory (webroot)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate number [1-2] then [enter] (press 'c' to cancel):

I wouldn't suggest certony in this case

certbot --apache 
9 Likes

Running certbot with the flag --apache made the below output :slight_smile:

Saving debug log to /var/log/letsencrypt/letsencrypt.log
The requested apache plugin does not appear to be installed

EDIT: How did you install certbot originally via snap? or apt?

9 Likes

The output from certbot-apache :slight_smile:

install: missing destination file operand after 'certbot-apache'
Try 'install --help' for more information.

Hang on lets slow down a bit so we don't have to rinse and repeat!

9 Likes

I now have the below from dumping the vhost :slight_smile:

VirtualHost configuration:
*:443                  www.adaoma.shop (/etc/apache2/sites-enabled/adaoma.shop-le-ssl.conf:2)
*:80                   is a NameVirtualHost
         default server ip-172-31-21-87.us-west-1.compute.internal (/etc/apache2/sites-enabled/000-default.conf:1)
         port 80 namevhost ip-172-31-21-87.us-west-1.compute.internal (/etc/apache2/sites-enabled/000-default.conf:1)
         port 80 namevhost adaoma.shop (/etc/apache2/sites-enabled/adaoma.shop.conf:1)
                 alias www.adaoma.shop
         port 80 namevhost adaoma.shop (/etc/apache2/sites-enabled/adaoma.shop.conf:18)
                 alias www.adaoma.shop
2 Likes

please show the entire command string you used to install the plugin...

sudo apt install certbot-apache ???

(IF apt was used to install certbot initally)
We are very close. No "running by the pool"

10 Likes

sudo apt install certbot-apache

Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
E: Unable to locate package certbot-apache
2 Likes

OK please hang for a minute.
Made a mistake

9 Likes

I still see two vhosts.

Also, what happened to the Amazon cert [which included the wildcard entry]?:

10 Likes

Im not getting the plugin right.
Gonna hold back for a couple minutes because I don't know how certbot was actually installed

10 Likes

We should check what LE cert(s) are left.
Please show:
certbot certificates

10 Likes

Please be patient, am at the middle of the night here, I made the necessary changes without restarting Apache before I was cut short of electrical power supply, will restart Apache when it's day break and the changes should reflect. :smile:

3 Likes

Here too - LOL

10:42 PM

11 Likes

@lordmalcolm No problem.
Sun is going down here ;0)
7:42PM

11 Likes

[3:45am] Will do that when it's day break here, am chatting from my phone now. :smile:
I deeply appreciate all your responses, well educating.

4 Likes

Thinking about the current situation and how to best go forward...
I think we should use --webroot authentication; As certbot may get confused by the (redirection and) lack of FQDN coverage - the HTTPS vhost only covers "www" and we will be requesting a cert with both names.
OR
Go certonly and make the cert change manually in the HTTPS vhost config.

11 Likes

I concur. Either way.
@lordmalcolm was able to get and configure a cert for www. the apache plugin is likely to complicate matters unnecessarily

11 Likes