OPNsense Forum

International Forums => French - Français => Topic started by: YoShiiro on February 20, 2017, 10:43:28 am

Title: Soucis letsencrypt - Interface perdue
Post by: YoShiiro on February 20, 2017, 10:43:28 am

Bonjour,

Hier tout se passait bien en ssl & co, j'ai décidé d'installer le plugin acme pour bénéficier d'un certificat let's encrypt.

Jusque là tout se passe bien mon certificat est bien créé et reconnu :

Code: [Select]

[Sun Feb 19 18:09:06 CET 2017] code='201'
[Sun Feb 19 18:09:06 CET 2017] 9:Le_LinkCert='https://acme-v01.api.letsencrypt.org/acme/cert/030338cf168be280c0e2cad02e854077f7e9'
[Sun Feb 19 18:09:06 CET 2017] Cert success.
[Sun Feb 19 18:09:06 CET 2017] Your cert is in  /var/etc/acme-client/home/mywebsite.com/mywebsite.com.cer
[Sun Feb 19 18:09:06 CET 2017] Your cert key is in  /var/etc/acme-client/home/mywebsite.com/mywebsite.com.key
[Sun Feb 19 18:09:06 CET 2017] 6:USER_PATH='/sbin:/bin:/usr/sbin:/usr/bin:/usr/games:/usr/local/sbin:/usr/local/bin'
[Sun Feb 19 18:09:06 CET 2017] 10:Le_LinkIssuer='https://acme-v01.api.letsencrypt.org/acme/issuer-cert'
[Sun Feb 19 18:09:06 CET 2017] GET
[Sun Feb 19 18:09:06 CET 2017] url='https://acme-v01.api.letsencrypt.org/acme/issuer-cert'
[Sun Feb 19 18:09:06 CET 2017] timeout
[Sun Feb 19 18:09:06 CET 2017] _CURL='curl -L --silent --dump-header /var/etc/acme-client/home/http.header '
[Sun Feb 19 18:09:07 CET 2017] ret='0'
[Sun Feb 19 18:09:07 CET 2017] The intermediate CA cert is in  /var/etc/acme-client/home/mywebsite.com/ca.cer
[Sun Feb 19 18:09:07 CET 2017] And the full chain certs is there:  /var/etc/acme-client/home/mywebsite.com/fullchain.cer
[Sun Feb 19 18:09:07 CET 2017] 11:Le_CertCreateTime='1487524147'
[Sun Feb 19 18:09:07 CET 2017] 12:Le_CertCreateTimeStr='Sun Feb 19 17:09:07 UTC 2017'
[Sun Feb 19 18:09:07 CET 2017] 13:Le_NextRenewTimeStr='Thu Apr 20 17:09:07 UTC 2017'
[Sun Feb 19 18:09:07 CET 2017] 14:Le_NextRenewTime='1492621747'
[Sun Feb 19 18:09:07 CET 2017] _on_issue_success
[Sun Feb 19 18:09:07 CET 2017] 15:Le_RealCertPath='/var/etc/acme-client/certs/58a873e9882b51.33727695/cert.pem'
[Sun Feb 19 18:09:07 CET 2017] 16:Le_RealCACertPath='/var/etc/acme-client/certs/58a873e9882b51.33727695/chain.pem'
[Sun Feb 19 18:09:07 CET 2017] 17:Le_RealKeyPath='/var/etc/acme-client/keys/58a873e9882b51.33727695/private.key'
[Sun Feb 19 18:09:07 CET 2017] 18:Le_ReloadCmd=''
[Sun Feb 19 18:09:07 CET 2017] 19:Le_RealFullChainPath='/var/etc/acme-client/certs/58a873e9882b51.33727695/fullchain.pem'
[Sun Feb 19 18:09:07 CET 2017] Installing cert to:/var/etc/acme-client/certs/58a873e9882b51.33727695/cert.pem
[Sun Feb 19 18:09:07 CET 2017] Installing CA to:/var/etc/acme-client/certs/58a873e9882b51.33727695/chain.pem
[Sun Feb 19 18:09:07 CET 2017] Installing key to:/var/etc/acme-client/keys/58a873e9882b51.33727695/private.key
[Sun Feb 19 18:09:07 CET 2017] Installing full chain to:/var/etc/acme-client/certs/58a873e9882b51.33727695/fullchain.pem

Le drame apparaît ce matin quand dans la partie administration je set let's encrypt en certificat SSL pour la partie SSL, paf j'ai depuis perdu l'accès la console aussi bien en wan qu'en lan via tunnel ssh... Une idée de comment récupérer la main ?