Leonid
August 10, 2022, 3:57pm
21
Disable CloudFlare (temporarily), get an SSL certificate for the host, and then delegate to CloudFlare, connect feedback from CloudFlare via http otherwise there will be an error
1 Like
erwin
August 11, 2022, 9:05am
22
is create host.domain.com from server, is created from server ? on contabo control panel ? i am using contabo
erwin
August 11, 2022, 9:07am
23
do you have guidance using video , about your guidance ?
Dear @erwin ,
Hestiacp is intended for people who know how to administer a server.
If you don’t know how to set up a DNS server or at least use a DNS server maybe hestiacp is not the right tool for you.
You have to go to your domain registrar and point it to your DNS server, that can be any server: Contabo, hestiaCP or any other.
Then you have to configure that DNS server to resolve host.domain.com to your hestiaCP server.
4 Likes
erwin
August 12, 2022, 11:01pm
25
i am succes add host.domain.com
erwin
August 12, 2022, 11:15pm
27
for https on main domain is oke .clear
erwin
August 12, 2022, 11:16pm
28
Bur my subdomain, is still not appearance
erwin
August 13, 2022, 1:10am
30
i have tried … ass your guidance, but still failed. still there erorr message : Error: Let’s Encrypt new auth status
erwin
August 13, 2022, 1:21am
31
i bought domain in namecheap… am i have to edit some profile on namecheap account? to make SSL on my subdomain ?
eris
August 13, 2022, 4:44am
32
2 Likes
erwin
August 14, 2022, 3:46am
33
about first guidance = > Disable Cloudflare proxy of you domain., is it that i have to change name seerver from cludflare ?? or just make off this item ?
erwin
August 14, 2022, 4:00am
35
Can I request a SSL Certificate with Lets Encrypt
Yes, you are able to enable Lets Encrypt even with Cloudflare how ever it need some special steps
Disable Cloudflare proxy of you domain.
Wait Approx 5 min due to caches by several name servers
Request a Certificate via Control panel or use the CLI command
Enable proxy
Switch over to Full (strict) (Go to SSL/TLS Tab)
Updating should be no issue anymore. And updates are not effected anymore
erwin
August 14, 2022, 4:03am
36
i have disbsale froxy and all beomce to DNS Only,andd then i install SSL agaian but the erorr mage still appeared
eris
August 14, 2022, 7:04am
38
What OS. version do you use?
opened 11:57PM - 27 Dec 20 UTC
closed 10:00PM - 13 Jan 21 UTC
bug
web
### In a few words, please describe the issue that you're experiencing:
Trying … to enable a Let's Encrypt SSL certificate for the site, I keep getting the error "Error code: 15". Using the `v-add-letsencrypt-domain` command also fails.
### What steps did you take when the issue occured?
1. Logging in to Hestia
2. Open the configuration of any site without SSL certificate
3. Press "Use Lets Encrypt to obtain SSL certificate" and then "Save".
4. I get the error `Error code: 15`
### Expected behavior:
SSL certificated should have been configured successfully
### Operating system:
Ubuntu 16.04.7 LTS
### Hestia Control Panel version:
1.3.2
### Additional notes:
Actually, I was able to find the cause of this error on my own and fix it. I need help from someone who knows more about bash-scripting than I do, to help me write a fix.
### The situation is as follows:
When using the `v-add-letsencrypt-domain` script, we may see a message like `curl: option --retry-connrefused: is unknown`.
![image](https://user-images.githubusercontent.com/1726455/103181856-9ff3da80-48ae-11eb-8c4a-a99a23b1d833.png)
This is because curl version **7.47.0** is in the Ubuntu 16.04.7 repositories, but the `--retry-connrefused` option was added in version **7.52.0**
![image](https://user-images.githubusercontent.com/1726455/103181928-4fc94800-48af-11eb-9f61-0b95621b9db4.png)
If you remove the `--retry-connrefused` parameter on the next line, everything works fine!
https://github.com/hestiacp/hestiacp/blob/4b4edd540ffde7f17a364aa3911c11b71b477eab/bin/v-add-letsencrypt-domain#L58
**⚠️ I think you just need to add a check on the Ubuntu version (or curl version) and add this parameter if necessary.**
Ubuntu 16.04 is not supported
Otherwise update to the last curl version
1 Like
erwin
August 16, 2022, 8:28am
39
yes sir, this is the reason i am failed to solve this SSL problem
eris
August 16, 2022, 8:43am
40
16.04 is EOL for about 15 months we don’t support it any more suggest upgrading to a newer version
2 Likes