Unable to verify cert

[wecukit]

Zimbra 8.7.11 running on CentOS 7

I get the following error:

cp: omitting directory ‘/etc/letsencrypt/live//domain.example.org’ cat: /etc/letsencrypt/live//chain.pem: No such file or directory Verifying '/opt/zimbra/ssl/letsencrypt/cert.pem' against '/opt/zimbra/ssl/letsencrypt/privkey.pem' Certificate '/opt/zimbra/ssl/letsencrypt/cert.pem' and private key '/opt/zimbra/ssl/letsencrypt/privkey.pem' match. Verifying '/opt/zimbra/ssl/letsencrypt/cert.pem' against '/opt/zimbra/ssl/letsencrypt/zimbra_chain.pem' ERROR: Unable to validate certificate chain: /opt/zimbra/ssl/letsencrypt/cert.pem: CN = zcs.wecinternational.org error 20 at 0 depth lookup:unable to get local issuer certificate Unable to verify cert!

The problem seems to be that the $CERTPATH variable in lines 265 and 269 adds an extra / to the path when running the cp command and the cat command - see message path /etc/letsencrypt/live//domain.example.org

If I edit the script and change $CERTPATH on those lines to "hard coding" the actual correct path then the script works perfectly. Do you have any ideas how to get CERTPATH working?

[maxxer]

I believe I've fixed with 7b3bca8

[wecukit]

Many thanks!

Kind Regards

From: "Lorenzo Milesi" notifications@github.com To: "YetOpen/certbot-zimbra" certbot-zimbra@noreply.github.com Cc: "it" it@uk.wecinternational.org, "Author" author@noreply.github.com Sent: Thursday, 2 November, 2017 08:07:11 Subject: Re: [YetOpen/certbot-zimbra] Unable to verify cert (#36)

I believe I've fixed with [ https://github.com/YetOpen/certbot-zimbra/commit/7b3bca8e9b16b5c4c80445f3ac746cc9ece63d7b | 7b3bca8 ]

— You are receiving this because you authored the thread. Reply to this email directly, [ https://github.com/YetOpen/certbot-zimbra/issues/36#issuecomment-341345706 | view it on GitHub ] , or [ https://github.com/notifications/unsubscribe-auth/AfwYCDHsCWsRiADHjNmwxnnj2ZVelFZVks5syXgugaJpZM4QO6eT | mute the thread ] .