Vesta Control Panel - Forum

Community Forum
https://forum.vestacp.com/

[Solved] After replacing SSL for VestaCP Panel won't start

https://forum.vestacp.com/viewtopic.php?f=11&t=10484

Page 1 of 1

[Solved] After replacing SSL for VestaCP Panel won't start

Posted: Mon Feb 01, 2016 5:03 pm
by saumil
Hello,
after following this
skid wrote:You mean control panel ssl certificate? If yes then checkout /usr/local/vesta/ssl/ directory. Replace files accordingly and restart vesta

Code: Select all

service vesta restart
Vesta is running on separate nginx web. As per nginx documentation CA bundle can be added as tail into certificate.

Code: Select all

cat www.example.com.crt bundle.crt > www.example.com.chained.crt
I have replaced certificate.key and certificate.crt from /usr/local/vesta/ssl/
Now Panel won't start

when I run

Code: Select all

service vesta restart
I get this error
Job for vesta.service failed. See 'systemctl status vesta.service' and 'journalctl -xn' for details.
So I did

Code: Select all

systemctl status vesta.service -l

● vesta.service - LSB: starts the vesta control panel
   Loaded: loaded (/etc/init.d/vesta)
   Active: failed (Result: exit-code) since Mon 2016-02-01 17:01:33 UTC; 37s ago
  Process: 2273 ExecStart=/etc/init.d/vesta start (code=exited, status=1/FAILURE)

Feb 01 17:01:33 host.com systemd[1]: Starting LSB: starts the vesta control panel...
Feb 01 17:01:33 host.com vesta[2273]: Starting vesta-nginx: vesta-nginxEnter PEM pass phrase:
Feb 01 17:01:33 host.com vesta[2273]: nginx: [emerg] SSL_CTX_use_PrivateKey_file("/usr/local/vesta/ssl/certificate.key") failed (SSL: error:0906406D:PEM routines:PEM_def_callback:problems getting password error:0907B068:PEM routines:PEM_READ_BIO_PRIVATEKEY:bad password read error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib)
Feb 01 17:01:33 host.com systemd[1]: vesta.service: control process exited, code=exited status=1
Feb 01 17:01:33 host.com systemd[1]: Failed to start LSB: starts the vesta control panel.
Feb 01 17:01:33 host.com systemd[1]: Unit vesta.service entered failed state.
And the problem is I don't have orignal key and crt file.

Re: [Solved] After replacing SSL for VestaCP Panel won't start

Posted: Mon Feb 01, 2016 5:26 pm
by saumil
Solved this by replacing with decrypted key.

Re: [Solved] After replacing SSL for VestaCP Panel won't start

Posted: Mon Feb 01, 2016 7:20 pm
by skurudo
saumil wrote:Solved this by replacing with decrypted key.
Nice!
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/