• The APS Catalog has been deprecated and removed from all Plesk Obsidian versions.
    Applications already installed from the APS Catalog will continue working. However, Plesk will no longer provide support for APS applications.
  • Please be aware: with the Plesk Obsidian 18.0.78 release, the support for the ngx_pagespeed.so module will be deprecated and removed from the sw-nginx package.

Duplicate ssl.conf file

J

Jase888

New Pleskian
Hi, I have an error on my Plesk Home page which says i have duplicate values with TLS1, TLS1.1, TLS1.2 and ssl_ciphers but when i look at the file they are only in once. The file is located at /etc/nginx/conf.d/ssl.conf

Heres the error message:

New configuration files for the Apache web server were not created due to the errors in configuration templates: nginx: [warn] duplicate value "TLSv1" in /etc/nginx/conf.d/ssl.conf:1 nginx: [warn] duplicate value "TLSv1.1" in /etc/nginx/conf.d/ssl.conf:1 nginx: [warn] duplicate value "TLSv1.2" in /etc/nginx/conf.d/ssl.conf:1 nginx: [emerg] "ssl_ciphers" directive is duplicate in /etc/nginx/conf.d/ssl.conf:2 nginx: configuration file /etc/nginx/nginx.conf test failed . Detailed error descriptions were sent to you by email. Please resolve the issues and click here to generate broken configuration files once again or hereto generate all configuration files.

My plesk version is 12.5.30 and is running on a Ubuntu 14.04 Server
 
Hi Igor, I am having the same issue.

New configuration files for the Apache web server were not created due to the errors in configuration templates: nginx: [warn] duplicate value "TLSv1.2" in /etc/nginx/conf.d/ssl.conf:4 nginx: [warn] duplicate value "TLSv1.3" in /etc/nginx/conf.d/ssl.conf:4 nginx: [emerg] "ssl_prefer_server_ciphers" directive is duplicate in /etc/nginx/conf.d/ssl.conf:13 nginx: configuration file /etc/nginx/nginx.conf test failed.

I am unable to load nginx on my server.

Config file:

ssl_dhparam /opt/psa/etc/dhparams2048.pem;

# Define SSL protocols once
ssl_protocols TLSv1.2 TLSv1.3;

# Proxy-specific protocols (if needed)
proxy_ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;

# Define ciphers once (check for truncation)
ssl_ciphers EECDH+AESGCM+AES128:EECDH+AESGCM+AES256:EECDH+CHACHA20:EECDH+SHA256+AES128:EECDH+SHA384+AES256:EECDH+SHA1:AES128+SHA256:AES256+SHA256;

# Only one `ssl_prefer_server_ciphers` directive should exist
ssl_prefer_server_ciphers on;
 
I performed a grep: grep -R 'TLSv1.1' /etc/nginx/*

and found the TLS was also described on this file: /etc/nginx/nginx.conf and have commented it out - nginx -t now passes, however which is the correct file to have the TLS versions?

/etc/nginx/conf.d/ssl.conf
/etc/nginx/nginx.conf
 
You must log in or register to reply here.

Similar threads

P
Resolved Unable to Start Nginx
Replies
1
Views
2K
PalmtreeRoundabout
P
J
Issue Template_Exception: nginx: [emerg] duplicate listen options
Replies
15
Views
5K
JuanCar
J
Jürgen_T
Resolved TLS versions for nginx
Replies
2
Views
2K
Jürgen_T
Jürgen_T
J
Issue utlook can’t download attachments or save drafts via IMAP (Plesk mail server)
Replies
1
Views
1K
Sebahat.hadzhi
Sebahat.hadzhi
Jürgen_T
Issue Modsecurity works with Apache but error with nginx
Replies
5
Views
4K
Raul A.
R
Back
Top