New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
<VirtualHost *> problems #3981
Comments
I'm having the same problem described in #3103 with an Apache / CentOS server. I believe the site is using a certificate from let's encrypt I set up last June, but when I tried to update it today using Certbot the bot was unable to read my ViurtualHost configurations.
I've also been displeased with the lack of the most basic of documentation on CertBot. For example, where do I need to be on the server before running the commands listed on https://certbot.eff.org/#centos6-apache? How many times do I need to run through those instructions if I have three sites/domains I want certificates for on the same server? Three times, or just once? Does the certbot-auto file really need to be placed into the document root for each site on the server? If not, where is the correct location(s) for that file? These instructions seem to assume a very high level of understanding of how certbot works - or at the very least what it's doing - but none of that information is provided before we're launched into running these commands. Even just a paragraph saying what will happen when you run it would be helpful. Something like "THESE files will be placed in THIS directory" might help us figure out where to run the commands. (I'm hoping my problem isn't that I was in the wrong directory when I ran |
That is correct. See for more information about the selection process how Apache ends up at which
This causes trouble like in #4169 (we've seen a lot of those on the Community!) TL;DR version with my interpretation:
As the Edit: I just don't understand how someone gets a |
@joohoi are you expecting to get this done for the release next week? |
Yes, it should be a short PR to review as well. |
I have this same problem in separated scenario (webserver:443 certificateshost:80) sharing single public IP (1.2.3.4) with Apache profiles:
I run this, forwarding only port 80 to renewals host:
|
We've made a lot of changes to Certbot since this issue was opened. If you still have this issue with an up-to-date version of Certbot, can you please add a comment letting us know? This helps us to better see what issues are still affecting our users. If there is no further activity, this issue will be automatically closed. |
Solution to my particular problem has been: $ certbot certonly --preferred-challenges http --standalone -n -d www.example.net |
The issue I described in my original post has been resolved. If you're continuing to have problems here, please open a new issue and fill out the issue template so we can better help you. |
Steps to reproduce:
<VirtualHost *:80>
to<VirtualHost *>
.certbot -d <domain> --apache
for any domain name pointing at that server.Domain validation fails. The vhost the Apache plugin makes is something like the following:
Trying to connect to the server using
openssl s_client
for the aboveServerName
causes:At first glance the generated vhost looks right to me. Perhaps the problem is having both HTTP and HTTPS vhosts using
<VirtualHost *>
and we should make the challenge vhost<VirtualHost *:443>
in this case?Any thoughts @joohoi?
The text was updated successfully, but these errors were encountered: