Nginx fails to start in v4 after configuring SSL

ERPNext
1

Hi,

I’m trying to install SSL certificate on v4 production instance but nginx fails to start. Steps I followed:

  1. Copied private.key & certificate.crt in /etc/nginx/conf.d/ssl with appropriate permission

  2. Configured default site by using below command

    bench set-ssl-certificate site1.local /etc/nginx/ssl/certificate.crt
    bench set-ssl-key site1.local /etc/nginx/ssl/private.key

  3. Re-configured nginx by

    bench setup nginx

  4. But these command fail in reloading nginx

    service nginx reload
    service nginx restart

I checked by configuring server_name under server block 80 & 443 with this also but no luck

server_name domain.com www.domain.com

Pls suggest

Sunil

2

What does the nginx error log say?

3

Sorry, I missed to refer nginx error log… seems like some issue with default path generated by nginx setup. Error log helped me to correct the path and now nginx restarted.

  ubuntu@ip-172-30-0-240:/var/log/nginx$ tail -f error.log 
2015/04/16 11:28:31 [emerg] 16602#0: unknown directive "rewrite^https://www.nescode.com" in /etc/nginx/conf.d/frappe.conf:61
2015/04/16 11:34:12 [emerg] 16732#0: BIO_new_file("/etc/nginx/ssl/certificate.crt") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/nginx/ssl/certificate.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)
2015/04/16 11:38:50 [emerg] 16775#0: BIO_new_file("/etc/nginx/ssl/certificate.crt") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/nginx/ssl/certificate.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)
2015/04/16 11:41:20 [emerg] 16821#0: BIO_new_file("/etc/nginx/ssl/certificate.crt") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/nginx/ssl/certificate.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)
2015/04/16 11:43:41 [emerg] 16859#0: BIO_new_file("/etc/nginx/ssl/certificate.crt") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/nginx/ssl/certificate.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)
2015/04/16 11:44:49 [emerg] 1939#0: BIO_new_file("/etc/nginx/ssl/certificate.crt") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/nginx/ssl/certificate.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)
2015/04/16 11:47:42 [emerg] 2461#0: BIO_new_file("/etc/nginx/ssl/certificate.crt") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/nginx/ssl/certificate.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)
2015/04/16 11:55:29 [emerg] 2529#0: BIO_new_file("/etc/nginx/ssl/certificate.crt") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/nginx/ssl/certificate.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)
2015/04/16 11:56:03 [emerg] 2561#0: BIO_new_file("/etc/nginx/ssl/certificate.crt") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/nginx/ssl/certificate.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)
2015/04/16 12:15:15 [emerg] 2628#0: BIO_new_file("/etc/nginx/ssl/certificate.crt") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/nginx/ssl/certificate.crt','r') error:2006D080:BIO routines:BIO_new_file:no such file)
^C

default path generated by nginx setup is

/etc/nginx/ssl/certificate.crt
/etc/nginx/ssl/private.key

Where as it should be

/etc/nginx/conf.d/ssl/certificate.crt
/etc/nginx/conf.d/ssl/private.key

Thx u pratik :slight_smile:

Sunil

4

It will put whatever you set as set-ssl-certificate