wet pond
Hello, I find an issue with ssl certificate for my wings server. I tested the certificate and it's issued for adminer.argonix.eu instead of alpha.argonix.eu (wings). I checked the /etc/pterodactyl/config.yml and there is everything correct. It points to certificates issued for alpha.argonix.eu. I am kinda lost. Do you have any ideas please?
This is /etc/pterodactyl/config.yml
past dragon
Did you create the certificate for the correct domain?
silent swallow
You didn't test right. You tested against the default SSL port and not your wings port
wet pond
How should I test it then?
silent swallow
With the right port on the end..
wet pond
The problem is we're having an issue with certificates when clients want to use his server's address. It's alpha.argonix.eu:some_assigned_port
silent swallow
I don't see any certificate issues
So you will need to explain why you think there is some kind of certificate issue
wet pond
For example. There is a discord bot with web running on https://alpha.argonix.eu:8111 but we can't open due to certificate issues. So I run some ssl tester like https://www.ssllabs.com/ssltest/index.html and it showed me the alpha.argonix.eu is not valid because there is a name mismatch and it's issued for adminer.argonix.eu.
Or we had issues with Satisfactory but it suddenly dissapeared. It was this error while connecting to server:
Connection to The server API was aborted because the tls negotioation failed. Cerfiticate Verify Result: certificate is not yet valid (9)
sweet adderBOT
@wet pond; Your certificate has expired or is not yet valid because your machine time is wrong.
You can sync your time with the command timedatectl set-ntp true
View our guide about generating SSL certificates https://pterodactyl.io/tutorials/creating_ssl_certificates.html
silent swallow
You get an SSL error on https://alpha.argonix.eu:8111/ because it is NOT an SSL service, it's plain text.
You get the wrong cert error on the SSL tester because you are testing against the default HTTPS port and for some reason you are expecting it to respond with the wings SSL certificate
past dragon
For example. There is a discord bot with web running on https://alpha.argonix.eu...
Because it's using port 443 for the test, and not 8080
wet pond
ok so test is wrong but it still does not solve the problem with certificate for the discord bot and issues with Satisfactory
silent swallow
The test is correct, you are just testing the wrong thing
There is no "problem with certificate for the discord bot"
You never set up your bot to use SSL for it's webUI
you are somehow expecting wings to magically provide SSL for your bot
wet pond
Ok, I get it for the bot, but it does not make sense for the Satisfactory
silent swallow
The SSL errors from satisfactory again have absolutly nothing to do with your wings certificate
wet pond
What shall I do with the Satisfactory then?
silent swallow
Your time was prob out. If you're not getting the error now then you have nothing to worry about
wet pond
ok, I will do some testing, if I find any issues again, I will message here. Thank you for your assistance.
Do you know what is this?
silent swallow
looks like normal random garbage connections
wet pond
It works for my friend but I can't connect. I did it somehow once but still I am getting this:
Connection to The server API was aborted because the tls negotioation failed. Cerfiticate Verify Result: certificate is not yet valid (9)
sweet adderBOT
@wet pond; Your certificate has expired or is not yet valid because your machine time is wrong.
You can sync your time with the command timedatectl set-ntp true
View our guide about generating SSL certificates https://pterodactyl.io/tutorials/creating_ssl_certificates.html
silent swallow
Make sure your computers time is correct