KeyHelp Community

Hello
I've 2 domain on keyweb.de, to one of them I have activate SSL Certificate Let's Encrypt but it does not operate from 2 hour about activation.
Browser calling https://www.mydomain.ext tell

www.domain.ext uses an invalid security certificate.
The certificate is only valid for kmXXXXX.keymachine.de
Error code: SSL_ERROR_BAD_CERT_DOMAIN


Perhaps should I install certbot-auto client ?
Any other suggestions?
Thank you

Sorry i have to guess.

It looks like your domain is using the wrong certificate.

Did your domain work correctly without any certificate?
I mean HTTP only?

Maybe the routing of the domain is wrong.
Check the server path where your domain points to.

Hi Tobi
domain work correctly on http.
There is also a old "default" certificate on SSL Certificate page, used only for administration and that I cannot delete or set to new "Let's Crypt".
Thank u

Are you trying to route the keyhelp admin panel to a TLD different then the "kmXXXXX.keymachine.de"?

Then you probably need a second certificate for your TLD.
I think you must add this certificate under SSL Certificates, then press the blue button "Add SSL certificate".
You can get a free certificte here: https://www.startssl.com/Validate
Just upload the provided files in keyhelp.

If you are unsure abaout that, then you could try this step first with a self-signed certificate.

Hope this helps and works

Are you using different dns like cloudflare?

I have the same issue on domain running under cloudflar and using CDN, still trying to solve that

SOLVED !
I did't show the subdomains !!
Clicking the button "Show Subdomain" i could activate Let's Crypt for subdomains like www !!!!

But now another problem : I have tried to activated other subdomains : most of them activated correclty but others report error.
The link System Logs & Status / Server Messages say
a lets encrypt error occurred for domain "subdomain.mydomain.ext"
but there's no any detail log.
DNS is correctly like other subdomain that function correclty.
I've thought it was number limit of subdomain for Let's Encrypt, but disabling other that function correctly, those don't start anyway !
Some suggestions ???
Thank you.

Maybe there is a limit for request of subdomains.

But I get this ssl-error, if the subdomain show / linking to a empty directory (without index.htm).

Nikko

nikko wrote:Maybe there is a limit for request of subdomains.

That's correct.
Here are some additional infos about the limits.

The link System Logs & Status / Server Messages say
a lets encrypt error occurred for domain "subdomain.mydomain.ext"
but there's no any detail log.

You can find more details in one of the two logs.

Go to "Panel Taks Logs". Here you have the

"update.log")
- If you enable Let's Encrypt for a domain, it will write the log into this file.
- It will contain all manually started Let's Encrypt changes

and the "letsencrypt.log")
- Here you will find all automatically performed updates to Let's Encrypt. The corresponding cronjob, which checks if Let's Encrypt certs are still valid (and refresh them, if needed) will write its log here.

Yes ... I've checked that there is too many certificates for subdomain ( 28 on 20 maximum).
Do you know if should I revoke someone certificate's subdomain less important instead of other ?
Thank you

Hello,

this is only a temporary limit. You can add 20 certificates for any domain per week. Just wait a week and you can add another.
If a certificate is issued, renew will work without problem (as there is no rate limit for this).

Ok ! I'll wait a week.
Thank you !