New SSL certificate isn't live after removing let's encrypt via VestaCP
Posted: Tue Mar 08, 2022 9:57 pm
hi there, running Ubuntu 18.x
So i logged on vestaCP, managed to remove Let's encrypt, when i switch off SSL support - Let's encrypt, then the website goes 403 - which tells me it's doing something. Great...
Next i've installed my own certificate, i ticked again SSL Support, added the certs, and hit save. It crunched for a little while then saved OK, all green and "→ Changes have been saved."
I've also installed manually the certs via SSH (checked Apache web conf, etc and it matches, replaced old CERT there)...
I can see the certificate details in the lower part of the page correctly added, with SSL Cert name, expiration date 2023, GREAT!
SUBJECT: websitename.com
ALIASES: websitename.com, www.websitename.com
NOT_BEFORE: Mar 7 00:00:00 2022 GMT
NOT_AFTER: Apr 7 23:59:59 2023 GMT
SIGNATURE: sha256WithRSAEncryption
PUB_KEY: 2048 bit
ISSUER: C = US, O = DigiCert Inc, CN = RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1
BUT! When i check out the website, have reloaded 1999999 times, you can still see the old R3 certificate from Let's encrypt. Tested on 4 browsers and incognitos.
I am running out of ideas, i have SSH access as well... are there some leftovers of Let's Encrypt that i need to manually purge? The site is a WP website running Cloudflare as well so perhaps is cached too?
thank you,
Gab
So i logged on vestaCP, managed to remove Let's encrypt, when i switch off SSL support - Let's encrypt, then the website goes 403 - which tells me it's doing something. Great...
Next i've installed my own certificate, i ticked again SSL Support, added the certs, and hit save. It crunched for a little while then saved OK, all green and "→ Changes have been saved."
I've also installed manually the certs via SSH (checked Apache web conf, etc and it matches, replaced old CERT there)...
I can see the certificate details in the lower part of the page correctly added, with SSL Cert name, expiration date 2023, GREAT!
SUBJECT: websitename.com
ALIASES: websitename.com, www.websitename.com
NOT_BEFORE: Mar 7 00:00:00 2022 GMT
NOT_AFTER: Apr 7 23:59:59 2023 GMT
SIGNATURE: sha256WithRSAEncryption
PUB_KEY: 2048 bit
ISSUER: C = US, O = DigiCert Inc, CN = RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1
BUT! When i check out the website, have reloaded 1999999 times, you can still see the old R3 certificate from Let's encrypt. Tested on 4 browsers and incognitos.
I am running out of ideas, i have SSH access as well... are there some leftovers of Let's Encrypt that i need to manually purge? The site is a WP website running Cloudflare as well so perhaps is cached too?
thank you,
Gab