Well, if everything is ok... it should work..
BTW, the error reported by certbot, has nothing to do with certbot itself
LetsEncrypt - SSL certificate is not valid
- fulltilt
- Thread is marked as Resolved.
-
-
Display MoreGood morning
So many solutions here
The problem is not about certbot, nor about i-MSCP or its LetsEncrypt plugin but about openSSL v1.0.x which cannot validate the SSL certificates.
To solve the problem, you need in order:
- Make sure that the CA ISRG Root X1 is installed on your system (in /etc/ssl/certs) : PEM AVAILABLE HERE
- Remove the old X3 (mozilla) CA which has expired
kess Good job. I don't think that all steps are required. You don't need to import the full CA. Regarding certbot, I'll update it.
kivamp You're totally right. To solve the problem, install the ISRG root X1 and remove the expired one manually from /etc/ssl/certs
hi,
i have paid for a plugin, i have tried every suggestion to get this to work, and i am still stuck with
Secure Connection Failed
An error occurred during a connection to http://www.contraspec.com. SSL received a record that exceeded the maximum permissible length.
Error code: SSL_ERROR_RX_RECORD_TOO_LONG
- The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
- Please contact the website owners to inform them of this problem.
i need my system to work, it is affecting my email and everything else.
please assist, its getting urgent nowthanx
-
-
There is nothing running on your port 443, did you installed the plugin correctly and enabled a certificate for this domain?
Are you the server administrator and using i-MSCP at all? The Letsencrypt Plugin from this site is specifically for the hosting panel i-MSCP.
Also you should open a new thread, and not hijacking anothere one, where the issue is totally different.
-
Maybe read the following link: https://serverfault.com/questi…exceeded-the-maximum-perm
But bare in mind Letsencrypt works fine with I-MSCP
-
-
All the situation happened again on old ubuntu's (while we cannot get any new), as Let's Encrypt changed SSLs again: https://letsencrypt.org/certificates/ .
I guess it's final time to move along somewhere.
-
All the situation happened again on old ubuntu's (while we cannot get any new), as Let's Encrypt changed SSLs again: https://letsencrypt.org/certificates/ .
I guess it's final time to move along somewhere.
it shows:
ISRG Root X1 - Validity: until 2030-06-04
I see no problems with Debian ... yet
-
-
Yeah, no issues on my end too, still renewing fine so far.
-
I've generated new certs today for new addresses, it says "Invalid SSL Certificate" in table, and certificate is not attached to domain. No way to do it, I'll do some bypasses for remaining machines.
-
-
I've generated new certs today for new addresses, it says "Invalid SSL Certificate" in table, and certificate is not attached to domain. No way to do it, I'll do some bypasses for remaining machines.
have you installed the classic certbot as described here?
LetsEncrypt - SSL certificate is not valid
maybe the symlinks are broken ...
-
fulltilt I did it that way before:
LetsEncrypt - SSL certificate is not valid
So probably it's time to change it for new version of certbot, as moving out all the instances of i-MSCP is not done by me yet.
-