Hi guys, i am running ubuntu 18.04 and ISPConfig 3.2 the SSL certificate for the server is not renewing by itself. to renew the certificate should i do it with update ispconfig or what would you recommend? thanks for your kind help.
How did you create the certificate? 3.2 has not been out long enough for a certificate created by the installer to need renewal, so if yours needs it, it must have been created in another way.
Hi, thanks for your answer. i did create the certificate like here: https://www.howtoforge.com/tutorial/securing-ispconfig-3-with-a-free-lets-encrypt-ssl-certificate/
It should renew when the expiry date is within 30 days. Did you create the renewal script to copy the LE certificates to the ISPConfig dir after renewal?
well actually i dont know, maybe i did not. Should i create this now ? will it update the LE certificate? How can i check if i created it already? thanks a lot for your kind help
If the file /etc/init.d/le_ispc_pem.sh doesn't exist it's most likely you didn't set it up. See the steps in the tutorial: https://www.howtoforge.com/tutorial...ript-for-your-ispconfig-pem-file-ispserverpem In case this cert is only for the UI, you can leave out Code: service pure-ftpd-mysql restart service monit restart service postfix restart service dovecot restart from the script. And don't forget to replace nginx with apache if you're using apache. After doing this, run the script manually once. Next time, it should be triggered automatically.
thanks for your answer. the file /etc/init.d/le_ispc_pem.sh exists on this server. As is see the certificate for ispconfig is working but i get an error when i want to connect to email: Code: server2.cl-i.net Identity: server2.cl-i.net Verified by: Let's Encrypt Authority X3 Expires: 10/11/20 it says the mail account cannot connect because the SSL certificate of the server can not be trusted.
Then you use the cert for mail aswell and postfix and dovecot should be restart. Compare your setup with the tutorial to see what is missing.