Hi all, I just installed ISPConfig Version: 3.2.11p1. If I add a webserver and configure auto-subdomain to www, Let's encrypt didn't add the www subdomain to the certificate, only the domain in the fields: Common Name and Certificate Subject Alternanative Name Because the website is redirected to www.<domainname> I got an error about SSL because thus URL isn't added to the certificate. How can I add the subdomain www.<domainname> to the certificate? Best regards, Ronald
Then please use the following step-by-step instructions to find out why LE refuses to add the subdomain to the SSL cert: https://forum.howtoforge.com/threads/lets-encrypt-error-faq.74179/
Hi Till I checked the logfile of ACME, but in the request that is send to Let's Encrypt the www.<domain> is not included. Only the <domain> is added to the request. See the relevant part of the logfile below. The subdomain www is working. If I go to www.<domain> I got an certification error because www.<domain> is not included in the SAN key of the certificate, but if I ignore the error, I see the website. Do you have any idea why ISPCONFIG will not add the www subdomain to the request? Thank you! Code: [Thu Dec 21 09:49:02 PM CET 2023] LE_WORKING_DIR='/root/.acme.sh' [Thu Dec 21 09:49:02 PM CET 2023] Running cmd: issue [Thu Dec 21 09:49:02 PM CET 2023] _main_domain='<domain>' [Thu Dec 21 09:49:02 PM CET 2023] _alt_domains='no' [Thu Dec 21 09:49:02 PM CET 2023] Using config home:/root/.acme.sh [Thu Dec 21 09:49:02 PM CET 2023] default_acme_server='https://acme-v02.api.letsencrypt.org/directory' [Thu Dec 21 09:49:02 PM CET 2023] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory' [Thu Dec 21 09:49:02 PM CET 2023] _ACME_SERVER_HOST='acme-v02.api.letsencrypt.org' [Thu Dec 21 09:49:02 PM CET 2023] _ACME_SERVER_PATH='directory' [Thu Dec 21 09:49:02 PM CET 2023] DOMAIN_PATH='/root/.acme.sh/<domain>' [Thu Dec 21 09:49:02 PM CET 2023] '/usr/local/ispconfig/interface/acme' does not contain 'dns' [Thu Dec 21 09:49:02 PM CET 2023] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory [Thu Dec 21 09:49:02 PM CET 2023] _init api for server: https://acme-v02.api.letsencrypt.org/directory [Thu Dec 21 09:49:02 PM CET 2023] GET [Thu Dec 21 09:49:02 PM CET 2023] url='https://acme-v02.api.letsencrypt.org/directory' [Thu Dec 21 09:49:02 PM CET 2023] timeout= [Thu Dec 21 09:49:02 PM CET 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g ' [Thu Dec 21 09:49:02 PM CET 2023] ret='0' =======Begin Send Signed Request======= [Thu Dec 21 09:49:03 PM CET 2023] url='https://acme-v02.api.letsencrypt.org/acme/new-order' [Thu Dec 21 09:49:03 PM CET 2023] payload='{"identifiers": [{"type":"dns","value":"<domain>"}]}' [Thu Dec 21 09:49:03 PM CET 2023] EC key [Thu Dec 21 09:49:03 PM CET 2023] _URGLY_PRINTF [Thu Dec 21 09:49:03 PM CET 2023] xargs [Thu Dec 21 09:49:03 PM CET 2023] _URGLY_PRINTF [Thu Dec 21 09:49:03 PM CET 2023] xargs [Thu Dec 21 09:49:03 PM CET 2023] Get nonce with HEAD. ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-no>[Thu Dec 21 09:49:03 PM CET 2023] HEAD [Thu Dec 21 09:49:03 PM CET 2023] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce' [Thu Dec 21 09:49:03 PM CET 2023] body [Thu Dec 21 09:49:03 PM CET 2023] _postContentType='application/jose+json' [Thu Dec 21 09:49:03 PM CET 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g -I ' [Thu Dec 21 09:49:04 PM CET 2023] _ret='0' [Thu Dec 21 09:49:04 PM CET 2023] _headers='HTTP/2 200
Please see let's encrypt error FAQ to find out why the www subdomain is not added, follow each step one after another. If you need further help, then you must post the debug output as explained in the FAQ. The acme.log is fine, but does not help in identifying the reason why www subdomain is not added.
