打印

LNMP1.4 SSL装不上,请问怎么操作?

LNMP1.4 SSL装不上,请问怎么操作?

2: Use Let's Encrypt to create SSL Certificate and Key
Enter 1 or 2: 2
Please enter your email address:
It will be processed automatically.
/bin/certbot [found]
index-url = https://mirrors.aliyun.com/pypi/simple/
pip.conf exist.
Starting create SSL Certificate use Let's Encrypt...
/opt/eff.org/certbot/venv/lib/python2.6/site-packages/cryptography/__init__.py:26: DeprecationWarning: Python 2.6 is no longer supported by the Python core team, please upgrade your Python. A future version of cryptography will drop support for Python 2.6
  DeprecationWarning
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
/opt/eff.org/certbot/venv/lib/python2.6/site-packages/acme/jose/jwa.py:110: DeprecationWarning: signer and verifier have been deprecated. Please use sign and verify instead.
  signer = key.signer(self.padding, self.hash)
An unexpected error occurred:
The request message was malformed :: Error creating new authz :: DNS name does not have enough labels
Please see the logfiles in /var/log/letsencrypt for more details.
Let's Encrypt SSL Certificate create failed!

TOP

估计可能是填写的域名有问题,是非域名。建议发 /var/log/letsencrypt/letsencrypt.log 完整日志看一下

TOP

管理员,你好。这个问题已经知道是什么情况引起来的。在lnmp vhost add 的时候,为了建立/home/wwwroot/baidu的文件目录,站点域名设置成baidu这种不带后缀的;lnmp vhost add 命令同时开启ssl时,ssl是不认baidu这样的没解析域名,所以才不能成功创建证书。建议:在lnmp vhost add 命令同时开启ssl时,过滤掉baidu这种不带后缀的域名。
希望你们的LNMP越来越好用,谢谢。

TOP

回复 3# 的帖子

不是正常的域名就没法生成ssl,你先lnmp vhost add 添加非正常域名后再单独 lnmp ssl add 为正常的域名添加ssl开启https就行了

TOP

Certbot has problem setting up the virtual environment.

We were not be able to guess the right solution from your pip
output.

Consult https://certbot.eff.org/docs/install.html#problems-with-python-virtual-environment
for possible solutions.
You may also find some support resources at https://certbot.eff.org/support/ .
Let's Encrypt SSL Certificate create failed!

这是按你说的的那个步骤操作的,建站点时也没有用不带后缀的域名。看了一下var/log/下没有所说的letsencrypt目录。

系统为centos 6.5 阿里云   服务器初始化安装
一次一步到位的安装都没有。郁闷。
再次初始化,wget不到lnmp1.4.tar.gz,但在本地可以下载到。

[ 本帖最后由 charwavid 于 2018-1-19 11:05 编辑 ]

TOP

回复 5# 的帖子

没有lesencrypt的目录说明没安装成功

可以尝试升级到1.5 https://lnmp.org/notice/lnmp-v1-5-beta.html

wget不到没错误信息没法说

TOP