ISPConfig Install SSL Failed

Discussion in 'Installation/Configuration' started by JULINT, Aug 26, 2022.

  1. JULINT

    JULINT Member

    Hi,

    I have successfully installed ISPConfig on Ubuntu 20.04, buat when i save certificate for SSL.
    It has been failed.
    How to troubleshoot this error?
     
  2. JULINT

    JULINT Member

    I have forgot , how to get server information from ispconfig command line.
     
  3. till

    till Super Moderator Staff Member ISPConfig Developer

  4. JULINT

    JULINT Member

  5. JULINT

    JULINT Member

    Any clue what is wrong ?
    I am trying to install SSL using ca-bundle and certificat
    Below is system log:

    Code:
    Aug 26 13:39:01 appv3 systemd[1]: Finished Clean php session files.
    Aug 26 13:39:02 appv3 CRON[375507]: (root) CMD (/usr/local/ispconfig/server/server.sh 2>&1 | while read line; do echo `/bin/date` "$line" >> /var/log/ispconfig/cron.log; done)
    Aug 26 13:39:02 appv3 CRON[375508]: (root) CMD (/usr/local/ispconfig/server/cron.sh 2>&1 | while read line; do echo `/bin/date` "$line" >> /var/log/ispconfig/cron.log; done)
    Aug 26 13:39:02 appv3 CRON[375509]: (root) CMD (  [ -x /usr/lib/php/sessionclean ] && if [ ! -d /run/systemd/system ]; then /usr/lib/php/sessionclean; fi)
    Aug 26 13:39:10 appv3 systemd[1]: Created slice User Slice of UID 0.
    Aug 26 13:39:10 appv3 systemd[1]: Starting User Runtime Directory /run/user/0...
    Aug 26 13:39:10 appv3 systemd[1]: Finished User Runtime Directory /run/user/0.
    Aug 26 13:39:10 appv3 systemd[1]: Starting User Manager for UID 0...
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Paths.
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Timers.
    Aug 26 13:39:10 appv3 systemd[375540]: Starting D-Bus User Message Bus Socket.
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG network certificate management daemon.
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG cryptographic agent and passphrase cache (access for web browsers).
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG cryptographic agent and passphrase cache (restricted).
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG cryptographic agent (ssh-agent emulation).
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG cryptographic agent and passphrase cache.
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on debconf communication socket.
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on D-Bus User Message Bus Socket.
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Sockets.
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Basic System.
    Aug 26 13:39:10 appv3 systemd[1]: Started User Manager for UID 0.
    Aug 26 13:39:10 appv3 systemd[1]: Started Session 2544 of user root.
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Main User Target.
    Aug 26 13:39:10 appv3 systemd[375540]: Startup finished in 276ms.
    Aug 26 13:40:01 appv3 CRON[375706]: (root) CMD (/usr/local/ispconfig/server/cron.sh 2>&1 | while read line; do echo `/bin/date` "$line" >> /var/log/ispconfig/cron.log; done)
    Aug 26 13:40:01 appv3 CRON[375709]: (root) CMD (/usr/local/ispconfig/server/server.sh 2>&1 | while read line; do echo `/bin/date` "$line" >> /var/log/ispconfig/cron.log; done)
    Aug 26 13:40:01 appv3 CRON[375712]: (www-data) CMD ([ -x /usr/share/awstats/tools/update.sh ] && /usr/share/awstats/tools/update.sh)
    Aug 26 13:40:01 appv3 CRON[375710]: (getmail) CMD (/usr/local/bin/run-getmail.sh > /dev/null 2>> /dev/null)
    Aug 26 13:40:03 appv3 postfix/pickup[374253]: 8E85744405: uid=33 from=<www-data>
    Aug 26 13:40:03 appv3 postfix/cleanup[375774]: 8E85744405: message-id=<[email protected]>
    Aug 26 13:40:03 appv3 postfix/qmgr[89037]: 8E85744405: from=<[email protected]>, size=998, nrcpt=1 (queue active)
    Aug 26 13:40:03 appv3 postfix/local[375777]: 8E85744405: to=<[email protected]>, orig_to=<root>, relay=local, delay=0.33, delays=0.26/0.02/0/0.06, dsn=2.0.0, status=sent (delivered to mailbox)
    Aug 26 13:40:03 appv3 postfix/qmgr[89037]: 8E85744405: removed
    Aug 26 13:40:04 appv3 pure-ftpd: ([email protected]::1) [INFO] New connection from ::1
    Aug 26 13:40:04 appv3 pure-ftpd: ([email protected]::1) [INFO] Logout.
    Code:
    Aug 26 13:39:01 appv3 systemd[1]: Finished Clean php session files.
    Aug 26 13:39:02 appv3 CRON[375507]: (root) CMD (/usr/local/ispconfig/server/server.sh 2>&1 | while read line; do echo `/bin/date` "$line" >> /var/log/ispconfig/cron.log; done)
    Aug 26 13:39:02 appv3 CRON[375508]: (root) CMD (/usr/local/ispconfig/server/cron.sh 2>&1 | while read line; do echo `/bin/date` "$line" >> /var/log/ispconfig/cron.log; done)
    Aug 26 13:39:02 appv3 CRON[375509]: (root) CMD (  [ -x /usr/lib/php/sessionclean ] && if [ ! -d /run/systemd/system ]; then /usr/lib/php/sessionclean; fi)
    Aug 26 13:39:10 appv3 systemd[1]: Created slice User Slice of UID 0.
    Aug 26 13:39:10 appv3 systemd[1]: Starting User Runtime Directory /run/user/0...
    Aug 26 13:39:10 appv3 systemd[1]: Finished User Runtime Directory /run/user/0.
    Aug 26 13:39:10 appv3 systemd[1]: Starting User Manager for UID 0...
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Paths.
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Timers.
    Aug 26 13:39:10 appv3 systemd[375540]: Starting D-Bus User Message Bus Socket.
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG network certificate management daemon.
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG cryptographic agent and passphrase cache (access for web browsers).
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG cryptographic agent and passphrase cache (restricted).
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG cryptographic agent (ssh-agent emulation).
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on GnuPG cryptographic agent and passphrase cache.
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on debconf communication socket.
    Aug 26 13:39:10 appv3 systemd[375540]: Listening on D-Bus User Message Bus Socket.
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Sockets.
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Basic System.
    Aug 26 13:39:10 appv3 systemd[1]: Started User Manager for UID 0.
    Aug 26 13:39:10 appv3 systemd[1]: Started Session 2544 of user root.
    Aug 26 13:39:10 appv3 systemd[375540]: Reached target Main User Target.
    Aug 26 13:39:10 appv3 systemd[375540]: Startup finished in 276ms.
    Aug 26 13:40:01 appv3 CRON[375706]: (root) CMD (/usr/local/ispconfig/server/cron.sh 2>&1 | while read line; do echo `/bin/date` "$line" >> /var/log/ispconfig/cron.log; done)
    Aug 26 13:40:01 appv3 CRON[375709]: (root) CMD (/usr/local/ispconfig/server/server.sh 2>&1 | while read line; do echo `/bin/date` "$line" >> /var/log/ispconfig/cron.log; done)
    Aug 26 13:40:01 appv3 CRON[375712]: (www-data) CMD ([ -x /usr/share/awstats/tools/update.sh ] && /usr/share/awstats/tools/update.sh)
    Aug 26 13:40:01 appv3 CRON[375710]: (getmail) CMD (/usr/local/bin/run-getmail.sh > /dev/null 2>> /dev/null)
    Aug 26 13:40:03 appv3 postfix/pickup[374253]: 8E85744405: uid=33 from=<www-data>
    Aug 26 13:40:03 appv3 postfix/cleanup[375774]: 8E85744405: message-id=<[email protected]>
    Aug 26 13:40:03 appv3 postfix/qmgr[89037]: 8E85744405: from=<[email protected]>, size=998, nrcpt=1 (queue active)
    Aug 26 13:40:03 appv3 postfix/local[375777]: 8E85744405: to=<[email protected]>, orig_to=<root>, relay=local, delay=0.33, delays=0.26/0.02/0/0.06, dsn=2.0.0, status=sent (delivered to mailbox)
    Aug 26 13:40:03 appv3 postfix/qmgr[89037]: 8E85744405: removed
    Aug 26 13:40:04 appv3 pure-ftpd: ([email protected]::1) [INFO] New connection from ::1
    Aug 26 13:40:04 appv3 pure-ftpd: ([email protected]::1) [INFO] Logout.
     
  6. JULINT

    JULINT Member

    Here is log of letsencrypt:

    Code:
    2022-08-26 03:48:18,640:DEBUG:certbot.main:certbot version: 0.40.0
    2022-08-26 03:48:18,641:DEBUG:certbot.main:Arguments: ['-q']
    2022-08-26 03:48:18,641:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
    2022-08-26 03:48:18,663:DEBUG:certbot.log:Root logging level set at 30
    2022-08-26 03:48:18,664:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
    2022-08-26 03:48:18,666:DEBUG:certbot.renewal:no renewal failures
    2022-08-26 10:00:16,161:DEBUG:certbot.main:certbot version: 0.40.0
    2022-08-26 10:00:16,162:DEBUG:certbot.main:Arguments: ['-n', '--post-hook', "echo '1' > /usr/local/ispconfig/server/le.restart"]
    2022-08-26 10:00:16,162:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
    2022-08-26 10:00:16,186:DEBUG:certbot.log:Root logging level set at 20
    2022-08-26 10:00:16,187:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
    2022-08-26 10:00:16,191:DEBUG:certbot.renewal:no renewal failures
     
  7. till

    till Super Moderator Staff Member ISPConfig Developer

  8. JULINT

    JULINT Member

    I am not install clamAV, is it affected to SSL installation?
     
  9. till

    till Super Moderator Staff Member ISPConfig Developer

    no
     
  10. JULINT

    JULINT Member

  11. till

    till Super Moderator Staff Member ISPConfig Developer

    This means you missed enabling debug mode (reread debug guide and follow it closely) plus you probably did not do the action that you want to debug (insert and activate SSL certs).
     
  12. JULINT

    JULINT Member

    Hi Till,
    Here is the log:
    Code:
    26.08.2022-07:30 - DEBUG [plugins.inc:155] - Calling function 'check_phpini_chan                                                                                                             ges' from plugin 'webserver_plugin' raised by action 'server_plugins_loaded'.
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: grep ^opcache.valida                                                                                                             te_root '/etc/php/7.4/apache2/php.ini' - return code: 0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: grep ^opcache.valida                                                                                                             te_root '/etc/php/7.4/fpm/php.ini' - return code: 0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: grep ^opcache.valida                                                                                                             te_root '/etc/php/7.4/cgi/php.ini' - return code: 0
    26.08.2022-07:30 - DEBUG [server:177] - Found 3 changes, starting update process                                                                                                             .
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'server_ip' from p                                                                                                             lugin 'apache2_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'apache2ctl' 2                                                                                                             > /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [apache2 plugin.inc:2469] - Writing the conf file: /etc                                                                                                             /apache2/sites-available/ispconfig.conf
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'update' from plug                                                                                                             in 'apps_vhost_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'apache2ctl' 2                                                                                                             > /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'update' from plug                                                                                                             in 'network_settings_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [network settings plugin.inc:249] - Network configurati                                                                                                             on disabled in server settings.
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'update' from plug                                                                                                             in 'postfix_server_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'dovecot' 2> /                                                                                                             dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'server_update' fr                                                                                                             om plugin 'rspamd_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'update' from plug                                                                                                             in 'server_services_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'server_update' fr                                                                                                             om plugin 'webserver_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [modules.inc:240] - Processed datalog_id 34
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'server_ip' from p                                                                                                             lugin 'apache2_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'apache2ctl' 2                                                                                                             > /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [apache2 plugin.inc:2469] - Writing the conf file: /etc                                                                                                             /apache2/sites-available/ispconfig.conf
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'update' from plug                                                                                                             in 'apps_vhost_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'apache2ctl' 2                                                                                                             > /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'update' from plug                                                                                                             in 'network_settings_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [network settings plugin.inc:249] - Network configurati                                                                                                             on disabled in server settings.
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'update' from plug                                                                                                             in 'postfix_server_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'dovecot' 2> /                                                                                                             dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'server_update' fr                                                                                                             om plugin 'rspamd_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'update' from plug                                                                                                             in 'server_services_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'server_update' fr                                                                                                             om plugin 'webserver_plugin' raised by event 'server_update'.
    26.08.2022-07:30 - DEBUG [modules.inc:240] - Processed datalog_id 35
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'ssl' from plugin                                                                                                              'apache2_plugin' raised by event 'web_domain_update'.
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: openssl x509 -noout                                                                                                              -text -in '/var/www/clients/client1/web1/ssl/listrikkita.com.crt' - return code:                                                                                                              0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'apache2ctl' 2                                                                                                             > /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [apache2 plugin.inc:462] - Saving SSL Cert for: listrik                                                                                                             kita.com
    26.08.2022-07:30 - DEBUG [plugins.inc:118] - Calling function 'update' from plug                                                                                                             in 'apache2_plugin' raised by event 'web_domain_update'.
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: chattr -i '/var/www/                                                                                                             clients/client1/web1' - return code: 0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: chattr +i '/var/www/                                                                                                             clients/client1/web1' - return code: 0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: df -T '/var/www/clie                                                                                                             nts/client1/web1'|awk 'END{print $2,$NF}' - return code: 0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'setquota' 2>                                                                                                              /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: setquota -u 'web1' '0' '0' 0 0 -a &> /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: setquota -T -u 'web1' 604800 604800 -a &> /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: chattr +i '/var/www/clients/client1/web1' - return code: 0
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'apache2ctl' 2> /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [apache2 plugin.inc:1828] - Enable SSL for: listrikkita.com
    26.08.2022-07:30 - DEBUG [apache2 plugin.inc:1875] - Writing the vhost file: /etc/apache2/sites-available/listrikkita.com.vhost
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: which 'apache2ctl' 2> /dev/null - return code: 0
    26.08.2022-07:30 - DEBUG [apache2 plugin.inc:3446] - Writing the PHP-FPM config file: /etc/php/7.4/fpm/pool.d/web1.conf
    26.08.2022-07:30 - DEBUG [services.inc:56] - Calling function 'restartPHP_FPM' from module 'web_module'.
    26.08.2022-07:30 - DEBUG [system.inc:2082] - Trying to use Systemd to restart service
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: systemctl is-enabled 'php7.4-fpm' 2>&1 - return code: 0
    26.08.2022-07:30 - DEBUG [web module.inc:316] - Restarting php-fpm: systemctl reload php7.4-fpm.service
    26.08.2022-07:30 - DEBUG [apache2 plugin.inc:1993] - Apache status is: running
    26.08.2022-07:30 - DEBUG [services.inc:56] - Calling function 'restartHttpd' from module 'web_module'.
    26.08.2022-07:30 - DEBUG [system.inc:2082] - Trying to use Systemd to restart service
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: systemctl is-enabled 'apache2' 2>&1 - return code: 0
    26.08.2022-07:30 - DEBUG [web module.inc:246] - Restarting httpd: systemctl restart apache2.service
    26.08.2022-07:30 - DEBUG [apache2 plugin.inc:1996] - Apache restart return value is: 0
    26.08.2022-07:30 - DEBUG [apache2 plugin.inc:2007] - Apache online status after restart is: running
    26.08.2022-07:30 - DEBUG [modules.inc:240] - Processed datalog_id 36
    26.08.2022-07:30 - DEBUG [services.inc:56] - Calling function 'restartHttpd' from module 'web_module'.
    26.08.2022-07:30 - DEBUG [system.inc:2082] - Trying to use Systemd to restart service
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: systemctl is-enabled 'apache2' 2>&1 - return code: 0
    26.08.2022-07:30 - DEBUG [web module.inc:246] - Restarting httpd: systemctl restart apache2.service
    26.08.2022-07:30 - DEBUG [services.inc:56] - Calling function 'restartPostfix' from module 'mail_module'.
    26.08.2022-07:30 - DEBUG [system.inc:2082] - Trying to use Systemd to restart service
    26.08.2022-07:30 - DEBUG [system.inc:2399] - safe_exec cmd: systemctl is-enabled 'postfix' 2>&1 - return code: 0
    26.08.2022-07:30 - DEBUG [server:217] - Remove Lock: /usr/local/ispconfig/server/temp/.ispconfig_lock
    finished server.php.
    
     
  13. till

    till Super Moderator Staff Member ISPConfig Developer

    According to the log, it should have worked now. If not, are you sure you selected action "save certificate" on the SSL tab before pressing save button?
     
  14. JULINT

    JULINT Member

    Yes, i have choose dropdown of save certificate. but when i browse it from browsser, it cannot display SSL, but only http
     
  15. JULINT

    JULINT Member

    Hi Till,
    Sorry, that was my fault, i have set my dns to cloudflare.
    I just realized about it.
     

Share This Page