Problems with SSL at first install


#1

When following the installation instructions, there may be a problem when generating the LetsEncrypt certificates.

Its a Catch-22 problem, where there is need for a certificate before asking for the Letsencrypt certificate, due to the way it is designed.

When we find a final answer to this problem the documentation will be fixed.


#2

As first workaround I created a self signed certificate and changed the NGINX configuration to point to it. Then I generate the letsencrypt certificates and point again the the letsecenypt pem files.

Step by step:

  1. Generate self signed certificates:
    openssl req -x509 -nodes -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365

  2. Update the nginx config at /etc/nginx/sites-available/serverboards.conf to point to the new certificates.

  3. Generate the LetsEncrypt certificate
    letsencrypt certonly \ -a webroot \ --webroot-path=/opt/serverboards/share/serverboards/frontend/ \ -d mydomain.com

  4. Update NGINX SSL configuration again to the LetsEncrypt certificates.


Community Chat

Join the conversation real time on our Matrix chat room. No need for clients when you connect using Riot.im.