• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Forwarded to devs Restore of a site that uses a Let's Encrypt certificate triggers "missing certificate" error

Bitpalast

Bitpalast

Plesk addicted!
Plesk Guru
TITLE:
Restore of a site that uses a Let's Encrypt certificate triggers "missing certificate" error
PRODUCT, VERSION, OPERATING SYSTEM, ARCHITECTURE:
Onyx 17.5, MU #24, CentOS 7.4 64-bit (before seen on CentOS 7.3, too)
PROBLEM DESCRIPTION:
When a website (subscription) is using an SSL certificate and the website owner restores the website from a backup, the SSL certificate is not restored correctly. On a subsequent syntax check or web server restart, the web server fails with

AH00526: Syntax error on line 52 of /etc/httpd/conf/plesk.conf.d/vhosts/<domain>.conf:
SSLCACertificateFile: file '/usr/local/psa/var/certificates/cert-<id>' does not exist or is empty

Seen on two occasions and two different servers so far. Not sure whether it occurs every time, because several test restores from admin view did work while in one instance the problem seen from customer view could be reproduced several times. In that reproducable case, after the restore the customer subscription held two Let's Encrypt certificates (according to the database content), but only one of them on disk. The invalid (missing) one however was used for the web server configuration file.​
STEPS TO REPRODUCE:
Create subscription, add Let's Encrypt SSL, backup the subscription from customer access. Then restore that subscription.​
ACTUAL RESULT:
Failing with
AH00526: Syntax error on line 52 of /etc/httpd/conf/plesk.conf.d/vhosts/<domain>.conf:
SSLCACertificateFile: file '/usr/local/psa/var/certificates/cert-<id>' does not exist or is empty​
EXPECTED RESULT:
Certificate should be restored correctly or re-issued.​
ANY ADDITIONAL INFORMATION:
YOUR EXPECTATIONS FROM PLESK SERVICE TEAM:
Confirm bug
 
Thank you, Peter!
The issue reproduced. Bug confirmed and submitted as PPPM-7208.
 
You must log in or register to reply here.

Similar threads

D
Resolved Let's Encrypt Certificate missing domain name
Replies
2
Views
476
davorg
D
S
Issue Let's Encrypt/SSL It! empty domain name error
Replies
8
Views
1K
SilentWarrior
S
H
Resolved Problem with install Let's Encrypt SSL/TLS certificate
Replies
6
Views
2K
HungLuu
H
L
Issue ( authorization token is unavailable ) Could not issue/renew Let`s Encrypt certificates
Replies
7
Views
2K
Leta
L
Hangover2
Forwarded to devs SSL It! breaks renewal and usage of Let's Encrypt wildcard certificates when subdomains are involved
2 3
Replies
48
Views
21K
gsk
gsk
Back
Top