Server Fault Asked by Kyle Banerjee on November 12, 2021
After accidentally letting our certificate expire, I generated a new private key and CSR with the command:
openssl req -new -keyout digitalcollections_ohsu_edu.key -out digitalcollections_ohsu_edu.csr
Private key had a passphase.
After installing everything, the server won’t come up. Error in the logs is:
Failed to configure encrypted (?) private key digitalcollections.ohsu.edu:443:0, check /etc/ssl/private/digitalcollections_ohsu_edu.key
Permissions on all files are good, the key is definitely the one used for the CSR, passphrase is correct (if I intentionally get it wrong, that appears in the logs).
Any idea where I should look?
The problem turned out to be caused by my downloading the wrong cert.
If there's a moral to the story, don't trust cert names on the machine. I downloaded a Root/Intermediate cert rather than the Intermediate/Root one I needed because the default name of the former matched the file on the machine and the latter did not.
Once I downloaded the correct cert everything worked fine.
Answered by Kyle Banerjee on November 12, 2021
Get help from others!
Recent Questions
Recent Answers
© 2024 TransWikia.com. All rights reserved. Sites we Love: PCI Database, UKBizDB, Menu Kuliner, Sharing RPP