As I already mentioned today, I have followed this great tutorial to setup my VPS yesterday: Code: https://www.howtoforge.de/anleitung/der-perfekte-server-centos-74-mit-apache-postfix-dovecot-pure-ftpd-bind-und-ispconfig-31/ One of the last steps was to secure ISPConfig with a self-signed certificate. Since ISPConfig is running on example.com and I installed this certificate, my question is what do I have to do to get a LetsEncrypt certificate for my example.com website that I added in ISPConfig under websites. Should I just select SSL and Let's Encrypt SSL in the website options and the certificate will be created automatically or do I have to deactivate this self-signed certificate for ISPConfig and configure everything with certbot? I just want to install the correct certificate that does not display browser warnings. In the past I set up certificates with cerbot and that always worked well and no browser warnings were displayed. Should I follow this tutorial here: Code: https://tomlankhorst.nl/free-ssl-certificates-use-lets-encrypt-with-ispconfig/ I just want the ISPConfig to run safely in the background on port 8080 and in front to have my secured example.com website. Thank you for your time.
If you want to have an SSL cert for ISPConfig on port 8080, see here: https://www.howtoforge.com/tutorial/securing-ispconfig-3-with-a-free-lets-encrypt-ssl-certificate/ If you want to have an SSL cert for your website, just tick the SSL and let's encrypt checkboxes in ISPConfig, that's all. Important: Do not follow the guide that you linked, it's completely wrong. It is for ISPConfig 3.0 and not compatible with 3.1 or newer versions.
And one side note, ISPConfig is always accessed trough the server hostname and not trough the domain of a website that you host. so the ISPConfig panel is accessed trough e.g. https://server.yourdomain.tld:8080 and not https://yourdomain.tld:8080 So the SSL cert of a hosted website does not matter at all.
So if I just check the two boxes, I get a valid Let's Encrypt certificate on my website without having to type anything in the SSL field? Thanks, I will follow the mentioned tutorial in your first post to also secure the ISPConfig with Let's Encrypt certificate.
After I have set up everything from scratch again because it didn't work in the first place, I have done exactly what you have written. The browser always throws an SSL warning and I cant visit my website because the certificate is not trusted. Does this have anything to do with the step 14 to secure PureFTPd in your tutorial and installing OpenSSL? Because this is the only step from your tutorial where I installed an SSL certificate, in the later step to secure ISPConfig I didn't do that this time. Or do I have to contact my host and ask them about this?
I just checked the localhost.crt located in /etc/pki/tls/certs, and that's the server certificate from the uploaded attachment above. How should I proceed? Should I deactivate this certificate so that my website is accessible again, or should I keep this certificate? Thank you for your help.
I do not know why your setup does not work. But I do know that certificates work after I have followed the instructions on installing ISPConfig and securing the panel. I have not written anything in the SSL box in website settings nor modified certificate files or vhost files. You can trust the certificate temporarily and access the website. Examine what browser says about the certificate and why it is not trusted.
