[BlueOnyx:20959] Re: LetsEncrypt Install Error

Mon Apr 24 14:32:44 -05 2017

> Hi Richard,
> 
> > When I try and install a LetsEncrypt SSL on a virtual site, I get the
> > error "The following error occurred during the SSL certificate
> > request. The installation path for the certificates could not be
determined".
> 
> The logfiles /var/log/letsencrypt/letsencrypt.log and /var/log/messages
will
> shed more light one this.
> 
> LE needs to verify that you own the domain(s) for which you request
> certificates. For that it puts a file under /web/.well-known/... of that
Vsite
> and polls it for every domain name that you request the certificate to be
valid
> for. The cert will only be issued if that /.well-known/... file can be
reached for
> *all* domain names that you request the cert to be valid for.
> 
> And that verification failed. Either for all domains, or at least one of
them.
> The logfiles will tell you which domain(s) it failed for.
> 
> There are a multitude of reasons why it can fail and the most common ones
> are these:
> 
> - Vsite or one of it's aliases has no DNS A record or are
>   otherwise not reachable.
> 
> - You request the cert to be valid for an alias as well,
>   but have "Web Alias Redirects" ticked under "Services"/"Web"
> 
> - .htaccess file redirects somewhere else before /.well-known/
>   can be accessed.
> 

Thanks Michael

There is no folder under /var/log named letsencrypt. That may be the first
problem!  This is from /var/log/messages:

Apr 24 19:26:52 bo5208 cced(smd)[9074]: client [0:9073] has admin rights
Apr 24 19:27:04 bo5208 cced(smd)[9086]: client 18:[49:7398]: SET  37 . SSL
"autoRenewDays" "=" "60" "LEemail" "=" "timing at racesonline.uk" "autoRenew"
"=" "1" "LEwantedAliases" "=" "&racesonline.uk&" "uses_letsencrypt" "=" "1"
"performLEinstall" "=" "1493062024"
Apr 24 19:27:05 bo5208 cced(smd)[9121]: client [0:9118] has admin rights
Apr 24 19:27:06 bo5208 cced(smd)[9141]: client [0:9140] has admin rights
Apr 24 19:27:06 bo5208 cced(smd)[9157]: client [0:9156] has admin rights
Apr 24 19:27:09 bo5208 cced(smd)[9173]: client [0:9172] has admin rights
Apr 24 19:27:09 bo5208 cced(smd)[9086]: client
18:handlers/base/ssl/le_install.pl: SET  37 . SSL LEclientRet =
"Bootstrapping dependencies for RedHat-based OSes...<br>yum is
/usr/bin/yum<br>Loaded plugins: blueonyx, security<br>Setting up Install
Process<br>Package gcc-4.4.7-18.el6.x86_64 already installed and latest
version<br>Package dialog-1.1-10.20080819.el6.x86_64 already installed and
latest version<br>Package augeas-libs-1.0.0-10.el6.x86_64 already installed
and latest version<br>Package openssl-1.0.1e-57.el6.x86_64 already installed
and latest version<br>Package openssl-devel-1.0.1e-57.el6.x86_64 already
installed and latest version<br>Package libffi-devel-3.0.5-3.2.el6.x86_64
already installed and latest version<br>Package
redhat-rpm-config-9.0.3-51.sl6.noarch already installed and latest
version<br>Package ca-certificates-2016.2.10-65.4.el6.noarch already
installed and latest version<br>Package python-2.6.6-66.el6_8.x86_64 already
installed and latest version<br>Package python-devel-2.6.6-66.el6_8.x86_64
already installed and latest version<br>Package python-virtualenv-1.10.1-1.e
Apr 24 19:27:09 bo5208 cced(smd)[9086]: client
18:handlers/base/ssl/le_install.pl: SET succeeded
Apr 24 19:27:09 bo5208 cced(smd)[9086]: handler
handlers/base/ssl/le_install.pl failed
Apr 24 19:27:09 bo5208 cced(smd)[9086]: client 18:[49:7398]: SET failed
Apr 24 19:27:09 bo5208 cced(smd)[9181]: client [0:9180] has admin rights

The domain name is www.racesonline.uk. DNS points to the correct IP as it
does for racesonline.uk that's shown in the web server aliases. Web Alias
Redirects is not enabled.

This is a Wordpress site and this is what is in the .htaccess file. I did
try removing it but still the same error.

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress

Many thanks as always.