I would very much like to secure my ISPConfig 3 CP with Let's Encrypt but I seem to be missing: ispserver.pem I followed "The Perfect Server" very carefully Then I created a website (not a subdomain) web1.vmsources.com and secured it with Let's Encrypt successfully: https://web1.vmsources.com Then I followed the tutorial: https://www.howtoforge.com/tutorial/securing-ispconfig-3-with-a-free-lets-encrypt-ssl-certificate/ No JOY. THX, -John Code: Last login: Thu Jun 18 14:15:48 2020 from 192.168.99.15 root@web1:~# hostname web1 root@web1:~# hostname -f web1.vmsources.com root@web1:~# cd /usr/local/ispconfig/interface/ssl/ root@web1:/usr/local/ispconfig/interface/ssl# mv ispserver.crt ispserver.crt-$(date +"%y%m%d%H%M%S").bak root@web1:/usr/local/ispconfig/interface/ssl# mv ispserver.key ispserver.key-$(date +"%y%m%d%H%M%S").bak root@web1:/usr/local/ispconfig/interface/ssl# mv ispserver.pem ispserver.pem-$(date +"%y%m%d%H%M%S").bak mv: cannot stat 'ispserver.pem': No such file or directory
More info based on this post: ISPConfig vhost file: Code: # SSL Configuration SSLEngine On SSLProtocol All -SSLv3 SSLCertificateFile /usr/local/ispconfig/interface/ssl/ispserver.crt SSLCertificateKeyFile /usr/local/ispconfig/interface/ssl/ispserver.key #SSLCACertificateFile /usr/local/ispconfig/interface/ssl/ispserver.bundle Actual DIR /usr/local/ispconfig/interface/ssl: Code: root@web1:/usr/local/ispconfig/interface/ssl# ls -lahtr total 28K -rwxr-x--- 1 root root 3.3K Jun 17 23:06 ispserver.key.secure -rwxr-x--- 1 root root 1.8K Jun 17 23:08 ispserver.csr -rwxr-x--- 1 root root 2.2K Jun 17 23:08 ispserver.crt -rwxr-x--- 1 root root 3.2K Jun 17 23:08 ispserver.key drwxr-x--- 9 ispconfig ispconfig 4.0K Jun 17 23:08 .. drwxr-x--- 2 root root 4.0K Jun 17 23:08 . -rwxr-x--- 1 root root 45 Jun 17 23:11 empty.dir I wonder if it is related to my post on Friday last week: https://www.howtoforge.com/communit...g3-install-cant-load-root-rnd-into-rng.84589/ THX, -John
That's ok, you seem to have left out the pure-ftpd ssl creation from perfect server guide. Just continue with the let's encrypt guide, it does not matter for it that the .pem file is missing.
Just checked the Ubuntu guide which you probably used, it uses a different file name for pure-ftpd. So everything is fine and there is no issue on your server.