http (80) and https (443) for UCP
81 for GUI Admin
HTTPS : 443 is currently the only exposed port through our external firewall.
I started getting a message on our dashboard that the certificate needed to be updated.
I launched cert. management and clicked on edit for my Let’s encrypt cert which was set as the default.
When I clicked on edit almost everything was already filled in from when I initially created the cert but the state field was empty.
So I entered our state, changed the challenge over to HTTPS and clicked update. After a long pause I got an error,
“There was an error updating the certificate: couldn’t connect to host”
Also my firewall log was showing several failures to port 80 (even though i had selected https for the challenge over)
For the heck of it i permitted http to pass through the firewall to the freepbx server
Set the state back to texas, changed the challenge over to HTTPS and hit update, this time after no delay I got the error
“There was an error updating the certificate: 403 Forbidden Forbidden You don’t have permission to access /.freepbx-known/0b1eb3b5932bdb5d197915b5eb15703e on this server. Apache/2.2.15 (CentOS) Server at voice.agrilife-dallas.center Port 80”
I repeated, entered the state, selected HTTP and then hit update but got the same error,
“There was an error updating the certificate: 403 Forbidden Forbidden You don’t have permission to access /.freepbx-known/865826b4bcfdef5888745fcecca7aa92 on this server. Apache/2.2.15 (CentOS) Server at voice.agrilife-dallas.center Port 80”
No failures/blocks are being noted on the hardware firewall.
Not sure what I might be doing wrong.