Hi, I just migrate the old ISPConfig 3.2 11p2 server to new one ISPConfig 3.3 0p2. Luckily everything went smoothly and the ISPConfig Migration toolkit did a perfect job The only thing left is to set up letsencrypt ssl for the ispconfig panel, given that the hostname of the new server is different from the name of the old one (there is no directory for the new server name in the .acme directory, which is logical because the migration was done). Can it be done through the ispconfig_update.sh script or is there another way. Thanks for your help in advance.
The new system shall already have an SSL certificate for the hostname, which is created during installation before the migration. This certificate does not change during migration. If you did not create one at install time, you can do that using ispconfig_update.sh.
Hi Till, thanks for fast reply. I did the installation through Automated ISPConfig 3 Installation on Debian 11 and Debian 12 tutorial. During the process I didn't have a query related to the IspConfig panel ssl, the only thing there is to choose whether we want certbot or acme by default (--use-certbot option). I assume that SSL should be installed in the background for the hostname, but in that case, in the .acme directory I should have a subdirectory with the name of the server in which SSL is installed, but there is none. In any case, if I try using the update script, shouldn't something be disturbed regarding the rest of the service?
You can easily check if you have a valid SSL certificate by accessing the ISPConfig GUI. If it does not show an SSL error in the browser, then you already have a valid Let's Encrypt SSL certificate and you do not have to change anything.
Only in case your system is using acme.sh and not certbot. If its a certbot system, then the certificate is in /etc/letsencrypt/.... folders.
Yes I know, its using acme.sh, have /root/.acme dir, only I don't have directory with SSL within for my ISPConfig and I assume that directory name should be the same as hostname. I already checked when I logged into the panel and I get an SSL error.
Ok, then you best run an ISPConfig update and let the updater reconfigure services and create a new SSL certificate.
Yes ....only when I run the script and put yes for "Shall the script create a ISPConfig backup in /var/backup/ now?" optionI get the error: ISPConfig database .. mysqlcheck: Got error: 1698: Access denied for user 'root'@'localhost' when trying to connect OK ERROR 1698 (28000): Access denied for user 'root'@'localhost' Unable to call mysql command line with credentials from mysql_clientdb.conf I checked and password is OK in mysql_clientdb.conf file
You probably changed the MySQL root password and did not change it for all root users. There is more than one root user in MySQL; typically, you have one for localhost and one for 127.0.0.1.
Yes, I changed pass for root@localhost and created [email protected] entry with the same pass. Now works. Thanks Till
