Issue Issue with duplicate SSL Certificate

[Gerardo Fernandez]

Server operating system version

Plesk Obsidian 18.0.72

Plesk version and microupdate number

Plesk Obsidian 18.0.72 Update 3

I just renewed the Lets Encrypt certificate, however the site shows as No Secure and when I check the certificate on Chrome, Edge or Brave, instead of the Lets Encrypt cert, it shows the default Plesk certificate, its not taking the new Lets Encrypt cert.

I made sure that in the Hosting section the option to Redirect visitors from HTTP to HTTPS via a SEO friendly 301 redirect is enabled, and it points to the Lets Encrypt certificate.

Is there a way to "force" the domain to use a specific certificate?

 

[Sebahat.hadzhi]

Hello, @Gerardo Fernandez . Could you please try running the following command to repair the SSL configuration of the domain:

plesk repair web -sslcerts domain.com

Afterward, to make sure you are not seeing cached results, please try testing with another browser or using the incognito/private mode of your current one.

 

[Gerardo Fernandez]

Hello, @Gerardo Fernandez . Could you please try running the following command to repair the SSL configuration of the domain:

plesk repair web -sslcerts domain.com

Afterward, to make sure you are not seeing cached results, please try testing with another browser or using the incognito/private mode of your current one.

Thank you for the reply, however the website is still showing the Plesk certificate and when running the command, it didn't identify any errors:

 

[Sebahat.hadzhi]

Thank you for the update. Could you please also check if the correct IP address is selected according to this article:

• https://support.plesk.com/hc/en-us/...not-accessible-via-HTTPS-ERR-CONNECTION-RESET

 

[Kaspar]

In addition to the suggestion from Sebahat, can you also post back the output of the following command:

plesk bin certificate --list -domain <your_domain>

 

[Gerardo Fernandez]

Thank you for the update. Could you please also check if the correct IP address is selected according to this article:

• https://support.plesk.com/hc/en-us/...not-accessible-via-HTTPS-ERR-CONNECTION-RESET

The domain we have use a shared IP Address 85.215.100.123; and in the IP Address option inside Hosting I only see a drop-down menu with another IP Address that is not 203.0.133.3, is there any other way to add it to those options?

 

[Gerardo Fernandez]

In addition to the suggestion from Sebahat, can you also post back the output of the following command:

plesk bin certificate --list -domain <your_domain>

Sure thing, here it is:

 

[Gerardo Fernandez]

Thank you for the update. Could you please also check if the correct IP address is selected according to this article:

• https://support.plesk.com/hc/en-us/...not-accessible-via-HTTPS-ERR-CONNECTION-RESET

Also 203.0.133.3 is not present in the Tools & Settings > IP Addresses, should I add it there?

 

[Gerardo Fernandez]

The domain we have use a shared IP Address 85.215.100.123; and in the IP Address option inside Hosting I only see a drop-down menu with another IP Address that is not 203.0.133.3, is there any other way to add it to those options?

View attachment 28724

I was able to add the IP Address to that list and select it however it still showing the site as not secure:

 

[Gerardo Fernandez]

The SEO-friendly redirect setting only forces HTTPS, it doesn't choose which certificate to use. The active certificate setting is separate and must be configured.

Thank you, do you have an article that shows how to check and configure that?