The website was running fine with GoDaddy's SSL installed, it has been approx a month since SSL expired and I lost the CSR file we used for the SSL certificate first time.
Steps I tried:
Created new CSR files as follows, in directory
/etc/apache2/sslopenssl req -new -newkey rsa:2048 -nodes -keyout mysite.com.key -out mysite.com.csrUsing the new CSR code generated a new SSL certificate at GoDaddy, downloaded zip, and moved to the server having 3 files in it.
Moved all files at
/etc/apache2/ssl, now this directory has 5 files as follows.-rw------- root:root mysite.com.key-rw------- root:root mysite.com.csr-rw-r--r-- root:root 0000000000.crt-rw-r--r-- root:root 0000000000.pem-rw-r--r-- root:root gd_bundle-g2-g1.crtUpdated my VirtualHost as under.
<VirtualHost *:443> ServerName www.mysite.com ServerAlias *.mysite.com DocumentRoot /var/www/html/mysite/public SSLEngine on SSLCertificateFile /etc/apache2/ssl/0000000000.crt SSLCertificateKeyFile /etc/apache2/ssl/mysite.com.key SSLCertificateChainFile /etc/apache2/ssl/gd_bundle-g2-g1.crt<Directory /var/www/html/mysite/public/> Options Indexes FollowSymLinks MultiViews AllowOverride All Require all granted</Directory></VirtualHost>
Run successfully following commands.
sudo a2dissite mysite-ssl.confsudo a2ensite mysite-ssl.confsudo systemctl reload apache2Checked by running following command on the server, it is loading the correct certificate.
openssl s_client -connect localhost:443
The issue is website is not getting a new SSL, still getting an old validity period.
More Attempts:Tried to install the free SSL certificate, but this domain is still getting GoDaddy old expired certificate in the browsers :-(
Latest Findings:In GoDaddy panel there are 2 entries for A RECORD as follows, I am not sure if this is the issue?
Type Host Points toA @ PROXIEDA starkip 123.123.123.123