trafficserver-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Susan Hinrichs <shinr...@verizonmedia.com>
Subject Re: ATS and letsencrypt
Date Tue, 10 Mar 2020 15:16:59 GMT
You combine your cert.pem and your chain.pem files and specify that file in
the ssl_cert_name attribute.  The specific certificate should go first.
Then the chain certs.

On Tue, Mar 10, 2020 at 7:14 AM Jacobo Nájera <jacobo@metahumano.org> wrote:

> Hi,
>
> How can I declarate Let's encrypt certs in ssl_multicert.config?
>
> List of files:
>
> cert.pem
> chain.pem
> fullchain.pem
> privkey.pem
>
> Currently:
>
> ssl_cert_name=cert.pem ssl_key_name=privkey.pem ssl_ca_name=chain.pem
>
>
> Log
>
> [Mar 10 08:04:44.428] {0x7f8186770600} ERROR:
> SSL::140194283456000:error:2006D002:BIO routines:BIO_new_file:system
> lib:../crypto/bio/bss_file.c:78
> [Mar 10 08:04:44.428] {0x7f8186770600} ERROR: failed to load certificate
> chain from /etc/letsencrypt/live/www.domain.com/cert.pem
> [Mar 10 08:04:44.429] {0x7f8186770600} NOTE: failed to reload
> ssl_multicert.config
> [Mar 10 08:04:44.429] {0x7f8186770600} FATAL: failed to load SSL
> certificate file, /etc/trafficserver/ssl_multicert.config
>
>
> Thanks, Jacobo
>

Mime
View raw message