Directadmin – x509: certificate signed by unknown authority – Letsencrypt

DST Root CA X3 expired on September 30, 2021. Because of this I got invalid certificate error when visiting Directadmin login in Chrome. Certificate itself was valid. CA certificate is problem. What you have to do is update system CA certificates. Also update letsencrypt via custombuild if you didn’t already.

Error was:

[root@server]# /usr/local/directadmin/scripts/ renew
Setting up certificate for a hostname:
2021/09/30 14:49:15 Could not create client: get directory at '': Get "": x509: certificate signed by unknown authority
Certificate generation failed.

You have to update system CA certificates ( Centos in this case ):

[root@server ~]# yum install ca-certificates -y
[root@server ~]# update-ca-trust

Then try to create new certificate for server hostname:

[root@server]# /usr/local/directadmin/scripts/ request_single 4096
Setting up certificate for a hostname:
2021/09/30 14:51:50 [INFO] [] acme: Obtaining SAN certificate
2021/09/30 14:51:51 [INFO] [] AuthURL:
2021/09/30 14:51:51 [INFO] [] acme: Could not find solver for: tls-alpn-01
2021/09/30 14:51:51 [INFO] [] acme: use http-01 solver
2021/09/30 14:51:51 [INFO] [] acme: Trying to solve HTTP-01
2021/09/30 14:51:57 [INFO] [] The server validated our request
2021/09/30 14:51:57 [INFO] [] acme: Validations succeeded; requesting certificates
2021/09/30 14:52:01 [INFO] [] Server responded with a certificate.
Certificate for has been created successfully!
DirectAdmin certificate has been setup.

1 Comment

Got Something To Say:

Your email address will not be published.


I accept the Privacy Policy

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Top!!! I’ve solved the problem!

© 2022
Hosted by SIEL

About author