0

我运行以下命令顺序:

"~/.acme.sh/acme.sh --issue --dns dns_azure -d *.{{ expectations.domain_name }} --server letsencrypt "



   '~/.acme.sh/acme.sh --install-cert -d "*.{{ expectations.domain_name }}" \
                                      --cert-file      "{{ ssl.certificates.projectgallery_de.source_location }}/certificate.crt"  \
                                      --key-file       "{{ ssl.certificates.projectgallery_de.source_location }}/key.key"  \
                                      --ca-file        "{{ ssl.certificates.projectgallery_de.source_location }}/intermediate.crt"  \
                                          --fullchain-file "{{ ssl.certificates.projectgallery_de.source_location }}/bundle.crt"'

所以在我放的虚拟主机配置上

   SSLCertificateFile /opt/day/ssl/folder/bundle.crt
   SSLCertificateKeyFile /opt/day/ssl/folder/key.key

当我做 openssl 验证时: openssl s_client -connect dhl-dhlcom-testing-author.dpdhl-platform.projectgallery.de:443

我得到的错误:

SSL 握手已读取 2044 字节并写入 322 字节

New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES128-GCM-SHA256
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES128-GCM-SHA256
    Session-ID: E615A79D83A3125997CEA2581EDD9E3179EE6C4B7C4BB2693B1ED67EE5BCD46C
    Session-ID-ctx:
    Master-Key: 66399E86F083E48E66F82CA24EE90CCCF5C6C2DF10458BAB8DE9E65DD1509F6F7EA50815DEE70D565705CC8492D520F9
    TLS session ticket lifetime hint: 300 (seconds)
    TLS session ticket:
    0000 - c8 7f 48 0a c0 29 36 b3-4e cf 27 59 34 1c 02 41   ..H..)6.N.'Y4..A
    0010 - 94 75 f4 db ac 6f 31 b0-a4 af b9 00 5b 79 23 d4   .u...o1.....[y#.
    0020 - a4 a8 f2 dd 7a e4 9a 53-03 8a f5 e6 25 22 c6 91   ....z..S....%"..
    0030 - 5e 22 05 b6 bf a3 2c 7e-e5 43 9e 99 74 9e ba 08   ^"....,~.C..t...
    0040 - 73 5b 48 3b c2 4f 36 79-c3 46 e0 4a b3 dd 82 09   s[H;.O6y.F.J....
    0050 - 35 a9 87 a8 f6 b7 3c 9c-25 1c 1b ff 3f 88 04 58   5.....<.%...?..X
    0060 - 1d d0 03 5d 3d fb 24 5c-b4 1e 81 b4 89 cb cb 4f   ...]=.$\.......O
    0070 - be cd d5 70 68 48 0c 0a-78 08 69 4e 07 8e f7 e2   ...phH..x.iN....
    0080 - eb 1b b5 e9 66 7a 7b 19-67 12 51 7d e4 b7 ab 44   ....fz{.g.Q}...D
    0090 - 09 96 dc ed 78 4b a1 29-ef 8a bb e3 b8 c8 e1 92   ....xK.)........
    00a0 - 76 d7 47 66 89 49 cf f6-fa e5 a0 bd 4f c9 2f c9   v.Gf.I......O./.
    00b0 - d6 aa a9 1a d1 6d fe 42-dd ae 49 7a 11 ba 4f c5   .....m.B..Iz..O.

    Start Time: 1638383179
    Timeout   : 7200 (sec)
    Verify return code: 21 (unable to verify the first certificate)
4

0 回答 0