I have this FreePBX 15 sever to play around with. I have not touched it in over a month, and a visit the web interface today and notice the SSL certificate is not valid.
Checking Certificate Manager, I see the certificate expired back on January 6. I try to manually renew it, but fails.
It presents…
/.freepbx-known/3822eb3393279885ef039392cc669e39’ - 404 Not Found Not Found The requested URL /.freepbx-known/3822eb3393279885ef039392cc669e39 was not found on this server.
Looking in /var/www/html/.freepbx-known/ and sure enough not there.
I delete the expire certificated and try again, and getting similar error.
In addition, I also tried some systems updates, and reboot, in addition to fwconsole chown and still same.
It currently has certificate manager module version 15.0.37 on it.
I am just know nothing about what is going on behind the scenes of that .freepbx-known folder, and see nothing online. Delete everything in there?
It did suggest I enable Responsive LetsEncrypt Rules, but made no difference, and spit this out.
Self test error: Pest_NotFound - 404 Not Found Not Found The requested URL /.freepbx-known/dea1e2ca1cb6ffd7d6018eb16f45204d was not found on this server.
What I’ve usually seen with 404’s is the a gateway firewall is forwarding to the wrong server, but it looks like your in a cloud VPS, so that is doubtful.
It looks like the token file is not being written, which would be very odd.
I assume the x.x.x.116 address in the PM is the correct public address for the box?
Looks like http requests hitting that x.x.x.116 address are going somewhere else. They aren’t being blocked because the 404 is being returned by whatever server they are hitting.
Have you done any custom config to apache? It’s possible it’s something in the apache config, but wouldn’t be anything generated by FreePBX.
Really odd, the file is there and with OK rights/ownership. No clue why apache would be returning 404. Not sure how that could be a certman module issue.
I doubt it will help, but I’d be curious to see /etc/httpd/conf.d/schmoozecom.conf.
That’s expected template code when the LE Service is enabled. It’s missing some backslashes in the rewrite rules, but I’m assuming the forum software absorbed them as escapes. Even so, I changed my file to match and still can’t reproduce the behavior.
I don’t know why accessing the file at 127.0.0.1 is successful, but accessing at the public IP gives a 404 error. The only thing that comes to mind is they are being processed by different virtual hosts.
Just to make sure there isn’t some stray apache config, look at the output of:
# parameter is upper case
httpd -S
There shouldn’t be any IPs in the output .
There should only be a single port 80 reference on a line like: