Page 1 of 1

I want to secure webmin url with Let's Encrypt

Posted: Mon Oct 03, 2016 6:09 pm
by Micheal
Hello,

I have read your blog post regarding Let's Encrypt certificate installation. Its extremely useful to know more about let's encrypt features.

https://nixtree.com/blog/secure-your-do ... s-encrypt/

I am using webmin VPS to host my domain. Let's encrypt has already installed and were running fine. Last time I tried to update the cert it seemed to break things and hang lol, when I checked webmin settings and saw my LetsEncrypt cert was due for renewal So i used the GUI to renew the cert - it took a long time, but came back successful - now I cant seem to access my webmin url through HTTPS but the domain url is loading fine through HTTPS

Please would you help me to secure my webmin url.

Regards
Micheal

Re: I want to secure webmin url with Let's Encrypt

Posted: Mon Oct 03, 2016 6:46 pm
by Aaron
Hello Micheal,

It seems you have not copied the Let's Encrypt SSL cert for the webmin access url, you can add it from your Webmin control panel.

To Secure Webmin, Usermin and webmail urls with Let’s Encrypt SSL Certificate

You can use the Let’s Encrypt SSL cert in Webmin (if the matching domain name is included in the SSL certificate, so that it shows SSL to the admin and domain owners accessing the Virtualmin web user interface on port 10000; Usermin, so that it is presented to email users accessing the webmail interface on port 20000; in Dovecot for SSL-protected IMAP and POP3 connections; in Postfix for SSL-protected SMTP connections by mail clients and in ProFTPD for SSL-protected FTP connection by clients.

To do so, go to Server Configuration -> Manage SSL Certificate. In Current Certificate tab, click 'Copy to Webmin', 'Copy to Usermin', 'Copy to Dovecot', 'Copy to Postfix', and/or 'Copy to ProFTPD' for each application you want to use the Let’s Encrypt certificate.


Alternative to Secure Webmin and Usermin Using Let’s Encrypt
---------------------------------------------------------------------------------

Webmin has another way to request and generate Let’s Encrypt cert to secure Webmin, useful if your Webmin and Usermin root is in a sub-domain which requires SSL certificate of their own.

Go to Webmin -> Webmin -> Webmin Configuration -> SSL Encryption. Then go to Let’s Encrypt tab. The screen is similar to how you generate the Let’s Encrypt cert for virtual host, where hostnames for certificate is automatically detected by Webmin and you can add more, except that you may need to specify the website root directory for validation file as the domain name of Webmin and Usermin root may not be accessible via A record in DNS. Also ensure that Copy new key and certificate to Webmin? option is set to Yes to use the newly created cert in Webmin.

To use the new cert in Usermin, go to Webmin -> Webmin -> Usermin Configuration -> Current Certificate, and hit Copy Certificate from Webmin to copy the SSL certificate, private key, CA cert and other settings that Webmin is using

Re: I want to secure webmin url with Let's Encrypt

Posted: Mon Oct 03, 2016 7:22 pm
by Micheal
Hi,

Thanks aaron. Its worked!!!!

Webmin url is loading fine with SSL.

Regards
Micheal

Re: I want to secure webmin url with Let's Encrypt

Posted: Mon Oct 03, 2016 7:55 pm
by Aaron
Hello Micheal,

Thank you for the update.


Aaron N
Linux Support Engineer.
Nixtree Solutions
Managed Full Server Backups
https://www.nixtree.com/managed-backups.php
Follow us on : https://twitter.com/nixtree[/b]