Resolved Admin panel expired certificate

[RingoStar77]

Server operating system version

Debian 10.13

Plesk version and microupdate number

18.0.46.2

Hi!

I cannot access the plesk admin panel through SSL on domain.com anymore. Firefox says 'SEC_ERROR_EXPIRED_CERTIFICATE'.

Plesk was configured to use an existing let's encrypt certificate from domain.com

I can call domain.com without any problems. Certificate is fine there. But as soon as I want to access the admin panel under domain.com:8443 I get the above-noted error. I have already tried to renew the certificate, but this did not help. I also did 'plesk repair web -sslcerts domain.com' - no errors were resolved.

 

[Peter Debik]

Can you start Chrome browser with the parameter "--ignore-certificate-errors" as described in Chrome disable SSL checking for sites? ? Then you should be able to login and comfortably reconfigure the panel certificate.

 

[RingoStar77]

Thanks for your quick reply! I was able to login but I don't know, how to reconfigure the certificate. As I mentioned above, I am using an existing one.

 

[Kaspar]

How you can secure you're servers hostname with a certificate is explained in this support article:

https://support.plesk.com/hc/en-us/articles/213954265-How-to-secure-a-Plesk-hostname-on-port-8443-with-an-SSL-certificate-Let-s-Encrypt-other-certificate-authorities-

 

[RingoStar77]

How you can secure you're servers hostname with a certificate is explained in this support article:

https://support.plesk.com/hc/en-us/articles/213954265-How-to-secure-a-Plesk-hostname-on-port-8443-with-an-SSL-certificate-Let-s-Encrypt-other-certificate-authorities-

Thanks, but I already did that. And it was working properly for several months. But all off a sudden I get the “expired message”. Even though, the certificate is valid until April 2023.

 

[Kaspar]

When you navigate in Plesk to Tools & Settings > SSL/TLS Certificates, what's selected/listed after "Certificate for securing Plesk"?

 

[RingoStar77]

 

[Kaspar]

What's the reason you've selected a certificate from a different domain to secure Plesk, instead of the default Lets Encrypt certificate from server pool?

 

[RingoStar77]

There's actually no reason for this. I have changed the setting to use Let's Encrypt from the server pool, but the issue persists.

 

[Kaspar]

Makes more sense to to use the Let's Encrypt from the server pool, as that the default certificate to secure Plesk. Now to might need to renew the certificate again by clicking the + Let's Encrypt button on the Tools & Settings > SSL/TLS Certificates page.

 

[RingoStar77]

Alright, thanks for the tip ;-) I have renewed the certificate. Still the same problem, unfortunately.

 

[Kaspar]

Sorry to hear that didn't solve your issue. Only suggestion I have left is to open an ticket with Plesk support so they can investigate the issue on your server directly.

How to get support directly from Plesk?

Question How to get support directly from Plesk? Answer Lease-type Plesk licenses purchased directly from Plesk running on supported Plesk version include full free support. Perpetual-type license...

support.plesk.com

 

[Peter Debik]

Could be that
# service sw-engine restart
loads the correct certificate after the change in the panel.

 

[RingoStar77]

Executing the command didn't help

 

[RingoStar77]

I have consulted the technical support and they have fixed it with the following command:

plesk bin server_pref --update -panel-certificate "Lets Encrypt certificate"