Keywords: LAMP/MAMP/WAMP - AWS - Technical issue - Secure Connections (SSL/HTTPS)
bnsupport ID: b3139328-ecf0-dfd8-ba2a-643a06a8ffb8
So I am running into some issues regarding the SSL encryption after using the BNCert tool. When going through the prompts I listen both domains and it seems like there will be only one certificate for the Server IP and it will be in the name of the first domain listed. I previously requested a certificate for the second domain that I requested the cert during this process, however I never revoked it and it seems like the installation process only catches previous certs if the domain is listed in the 1st place (in my case in the current directory the domain that previously was issued a cert is listed under 'wordpress2' hence I listed it second). The installation was successful however I was notified that auto renewal had experienced a failure and i was not too concerned as that I can deal with.
Here start the issues - the domain to which the SSL cert was issued now points to the SERVER IP and not the Virtual Host that was configured just recently. The second domain does not have a padlock, but upon checking it seems like it has a hand registered cert though it seems like it is the old one.
Here are the installation steps I took:
wget -O bncert-linux-x64.run https://downloads.bitnami.com/files/bncert/latest/bncert-linux-x64.run
sudo mkdir /opt/bitnami/bncert
sudo mv bncert-linux-x64.run /opt/bitnami/bncert/
sudo chmod +x /opt/bitnami/bncert/bncert-linux-x64.run
sudo ln -s /opt/bitnami/bncert/bncert-linux-x64.run /opt/bitnami/bncert-tool
Added both domains
- enable http to https redirection: y
- enable non-www to www redirection: n
- enable www to non-www redirection: y
- Agree to changes: y
Once the installation process was complete I proceeded to make the following revisions:
Wp-config files for both domains - added 's' to http in the define fields
Substituted override for All in the following: /opt/bitnami/apps/letsencrypt/conf/httpd-app.conf
What would be my next step? Revoke the certificate altogether, or the old one somehow and run the process once again after substituting for a dummy key in Apache? Or is there perhaps another way?
I also ran the Bitnami Support tool and the code is provided in the thread.
Thank you again!