Not able to configure SSL using bncert tool

Keywords: WordPress - AWS - Technical issue - Secure Connections (SSL/HTTPS)

bnsupport ID: 049aa00f-8013-c59d-2004-57415875e549

bndiagnostic output:

? Apache: Found possible issues
? Connectivity: Found possible issues
? Resources: Found possible issues
https://docs.bitnami.com/general/apps/wordpress/troubleshooting/debug-errors-apache/
https://docs.bitnami.com/bch/apps/moodle/troubleshooting/deny-connections-bots-apache/
https://docs.bitnami.com/general/faq/administration/use-firewall/
https://docs.bitnami.com/installer/faq/linux-faq/administration/increase-memory-linux/

bndiagnostic failure reason: The suggested guides are not related with my issue

Description:
I am trying to configure SSL and bncert-tool seemed straight forward. But, it is failing with following errors:

Executing ./autoupdate-linux-x64.run --mode unattended
Script exit code: 1

Script output:
 

Script stderr:
 child process exited abnormally

Error running ./autoupdate-linux-x64.run --mode unattended: child process exited abnormally
Executing openssl x509 -noout -text -in /opt/bitnami/letsencrypt/certificates/DOMAIN.crt
Script exit code: 0
Executing /opt/bitnami/nami/bin/nami status varnish
Script exit code: 1

Script output:
 

Script stderr:
 e[37mnami   e[39m e[31mERRORe[39m Cannot find any module matching the provided specification 'varnish'

Error running /opt/bitnami/nami/bin/nami status varnish: e[37mnami   e[39m e[31mERRORe[39m Cannot find any module matching the provided specification 'varnish'
Executing service bitnami stop apache > /dev/null 2> /dev/null
Script exit code: 0
Executing /opt/bitnami/nami/bin/nami status varnish
Script exit code: 1

Script output:
 

Script stderr:
 e[37mnami   e[39m e[31mERRORe[39m Cannot find any module matching the provided specification 'varnish'

Error running /opt/bitnami/nami/bin/nami status varnish: e[37mnami   e[39m e[31mERRORe[39m Cannot find any module matching the provided specification 'varnish'
Executing service bitnami stop apache > /dev/null 2> /dev/null
Script exit code: 0

Script output:
 

Script stderr:
 

Executing /opt/bitnami/letsencrypt/lego --version
Script exit code: 0

Script output:
 lego version 4.5.3 linux/amd64

Script stderr:
 

Configuring Let's Encrypt certificates
Executing /opt/bitnami/letsencrypt/lego --path /opt/bitnami/letsencrypt --email="parshwa@timesarrow.org" --tls --domains=cms.timesarrow.org renew
Script exit code: 0

Script output:
 

Script stderr:
 2021/10/23 07:36:04 [cms.timesarrow.org] The certificate expires in 89 days, the number of days defined to perform the renewal is 30: no renewal.

Executing chown -R bitnami /opt/bitnami/letsencrypt
Script exit code: 0

Script output:
 

Script stderr:
 

Executing chown -R bitnami /opt/bitnami/apps/letsencrypt
Script exit code: 0

Script output:
 

Script stderr:
 

Executing find /opt/bitnami/apps/letsencrypt   -type f  -print0 | xargs -0 chmod 664
Script exit code: 0

Script output:
 

Script stderr:
 

Executing find /opt/bitnami/apps/letsencrypt   -type d  -print0 | xargs -0 chmod 775
Script exit code: 0

Script output:
 

Script stderr:
 

Executing crontab -u bitnami -l
Script exit code: 0

Script output:
 
0 0 * * * sudo /opt/bitnami/letsencrypt/lego --path /opt/bitnami/letsencrypt --email="parshwa@timesarrow.org" --http --http-timeout 30 --http.webroot /opt/bitnami/apps/letsencrypt --domains=cms.timesarrow.org renew && sudo /opt/bitnami/apache/bin/httpd -f /opt/bitnami/apache/conf/httpd.conf -k graceful # bncert-autorenew

Script stderr:
 

Executing crontab -u bitnami /tmp/cron20211023073613
Script exit code: 0

Script output:
 

Script stderr:
 

Executing crontab -u bitnami -l
Script exit code: 0

Script output:
 

Script stderr:
 

Executing crontab -u bitnami /tmp/cron20211023073617
Script exit code: 0

Script output:
 

Script stderr:
 

Configuring server name
[07:36:20] Removing redirections and patches in web server configuration from previous runs
Enabling HTTP to HTTPS redirection
[07:36:48] Enabling HTTPS redirection
Testing web server configuration
Executing /opt/bitnami/apache/bin/apachectl configtest
Script exit code: 0

Script output:
 

Script stderr:
 Syntax OK

Starting web server
Executing service bitnami stop apache > /dev/null 2> /dev/null
Script exit code: 0

Script output:
 

Script stderr:
 

Executing service bitnami start apache > /dev/null 2> /dev/null
Script exit code: 0

Script output:
 

Script stderr:
 

Executing /opt/bitnami/nami/bin/nami status apache
Script exit code: 1

Script output:
 

Script stderr:
 e[37mnami   e[39m e[31mERRORe[39m Cannot find any module matching the provided specification 'apache'

Error running /opt/bitnami/nami/bin/nami status apache: e[37mnami   e[39m e[31mERRORe[39m Cannot find any module matching the provided specification 'apache'

Hello @parshwa,

Could you please, share with us the exact commands you are executing? Also, you defined your stack as WordPress but in the stack configuration it appears you are running a LAMP stack one, could you please explain a bit your setup? Are you installing a WordPress application inside your LAMP stack?

Regards,
Francisco de Paz

Hello @fdepaz,

I am using “WordPress with Amazon Aurora Certified by Bitnami and Automattic” https://aws.amazon.com/marketplace/pp/prodview-7godons3qajla

I used sudo /opt/bitnami/bncert-tool command to run bncert-tool and provided necessary information.

Regards,
Parshwa

Hello @parshwa,

I have been able to reproduce your issue, it seems there is a bug in our bncert-tool when running in our Wordpress multi-tier solution. I have reported this to our development team for them to work on a fix. In the meantime, please install the certificate using our alternative approach.

You already have the certificate created and the .crt and .key files are already in the path opt/bitnami/apache/conf. As such, you only need to change Apache’s configuration and restart the instance for the changes to apply:

https://docs.bitnami.com/aws/how-to/generate-install-lets-encrypt-ssl/#step-3-configure-the-web-server-to-use-the-lets-encrypt-certificate

Regards,
Francisco de Paz

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.