Hi guys, I have a problem with site migration from one ISPConfig to another. I already copied database and web files to second ISPConfig server and disabled the old one, but now there is a problem with old LetsEncrypt certs. On old server (Debian Stretch) there is Certbot installed but on second (Debian Buster) I don`t have Certbot command and option at all. Now also on old one certs for website are regular in /tec/letsencrypt/live dir. but same directory doesn`t exist on second server. Please can you help me and assist with this issue , I would appreciate it Bets regards
The new server uses acme.sh instead of certbot i assume. Re-enabling Let's Encrypt for the sites in quesiton should create the cerficates on the new server. IIRC there is no way to migrate the SSL certificates to another server.
Recent ISPConfig systems use acme.sh and not certbot, unless you specified in the installer at install time to use certbot. Certs from acme.sh are in /root/.acme.sh/ folder. SSL certificates cannot be migrated because you decided to use a different LE client. Therefore, you must now request new certs by enabling the SSL and Let's Encrypt checkboxes of the website after you point the domain of the website to the new server.
Hi Till, thanks for your fast reply. Yes, I already did that by disabling the old site on the old ISPConfig (unchecking Active) and activating the new site, but the problem is that every time I check the LetsEncrypt and SSL checkboxes and go to Save, when I re-enter the website settings, they are unchecked by themselves , as if that setting will not be accepted. Also I don`t see /cme.sh folder under root Can I post log file from ISPConfig here?
Check the acme.log for hints. Did you change the A-Records of the domains accordingly to point to the new servers? Use the troubleshooting guide first: https://forum.howtoforge.com/threads/lets-encrypt-error-faq.74179/
