Perfect Server Debian 10 ISPConfig: Mailman, phpmyadmin and roundcube don't load on https

Discussion in 'HOWTO-Related Questions' started by Niubbo75, Aug 10, 2022.

  1. Niubbo75

    Niubbo75 Member

    Niubbo75, Aug 10, 2022
    #1
  2. Steini86

    Steini86 Active Member

    Probably your certificate is not properly installed. Did you install the letsencrypt certificates? Test your site with internet.nl
    Which mentioned software do you try to reach?
    Try to create a new certificate for ISCP. execute ispconfig_update.sh --force and choose at the end to create a new certificate.
     
    Steini86, Aug 10, 2022
    #2
  3. till

    till Super Moderator Staff Member ISPConfig Developer

    I don't think these Debian packages have https enabled by default when Debian installs them. Try enabling the apache default ssl vhost.
     
    till, Aug 11, 2022
    #3
  4. Niubbo75

    Niubbo75 Member

    Thankyou Steini86 for your reply, I've already done those steps, my cert is properly installed (I can reach w/out any issues https://my.domain.tlc:8080)
     
    Niubbo75, Aug 11, 2022
    #4
  5. Niubbo75

    Niubbo75 Member

    Hello Till, I've enabled default apache ssl vhost but I get the error of invalid cert, maybe because default vhost use self signed cert.
    Anyway, if I try to go to those pages on port 8080 instead of 443 they works, so I think I can live with this configuration, thanks for your valuable support!
     
    Niubbo75, Aug 11, 2022
    #5
    till likes this.
  6. till

    till Super Moderator Staff Member ISPConfig Developer

    What you might try is editing the default-ssl vhost file and point the SSL cert paths to the SSL cert and key in the folder /usr/local/ispconfig/interface/ssl/ as that#s the cert and key used by the ISPConfig GUI.
     
    till, Aug 11, 2022
    #6
    Niubbo75 likes this.
  7. Niubbo75

    Niubbo75 Member

    Hello Till and thankyou again for your reply. ATM I've other issues more important than this, so I can easy survive if I can load https pages on port 8080 for that part of software :)
     
    Niubbo75, Aug 11, 2022
    #7
  8. Steini86

    Steini86 Active Member

    How (which domain / path?) do you try to access these services? Your certificate needs to be valid for this domain. Which error message do you get?
     
    Steini86, Aug 11, 2022
    #8
  9. Niubbo75

    Niubbo75 Member

    I've https://my.domain.tls:8080 -> Valid Cert
    https://my.domain.tls:8080/phpmyadmin or /webmail -> Valid Cert and works
    https://my.domain.tls:8080/cgi-bin/mailman/admin/ -> Internal Server Error (maybe mailman is not properly configured to run under SSL)
    https://my.domain.tls/phpmyadmin or /webmail -> SSL_ERROR_RX_RECORD_TOO_LONG (tested on Google Chrome and FireFox, both at latest update)
    https://my.domain.tls/cgi-bin/mailman/admin/ -> SSL_ERROR_RX_RECORD_TOO_LONG)
     
    Niubbo75, Aug 11, 2022
    #9
  10. Steini86

    Steini86 Active Member

    Does https://my.domain.tls work properly? Looks like this cert is invalid.

    Yes. Mailman is more difficult:
    https://wiki.list.org/DOC/4.27 Securing Mailman's web GUI by using Secure HTTP-SSL (HTTPS)
    You need to do changes in mm_cfg.py of mailman
     
    Steini86, Aug 11, 2022
    #10
  11. Niubbo75

    Niubbo75 Member

    @Steini86 you are right! https://my.domain.tls don't work, maybe because is the FQD I use for ISPConfig web panel and not for any website.
    ATM I do not have any FQDN pointing there, but I'll try next week when I have the first website ready to go online!
    I'll update this 3D.
    [EDIT] I can confirm that with differente FQDN both phpmyadmin and roundcube works w/out any issues on https [/EDIT]
     
    Last edited: Aug 30, 2022
    Niubbo75, Aug 11, 2022
    #11
    Steini86 likes this.

Share This Page