I just installed Ubuntu 16.04 LTS and Virtualmin/Webmin via the Virtualmin full stack install script.
I can already access Webmin and a test page on the same host over SSL, but I can’t get rid of the browser warning for Webmin (the web page using the same hostname does work fine using a Let’s Encrypt cert). I only created the Apache virtual host with the same name to see if that would help recognize the cert.
I have tried to use a Let’s Encrypt certificate, but the browser keeps saying that I have a self-signed cert.
So I have
hostname.example.tld - I can access a webpage on this domain via https with no warnings.
hostname.example.tld:10000 to access Webmin gives me an security warning.
When I open the SSL Settings tab, it is populated with the letsencrypt key, cert an ca
Enable SSL: Yes
Private key file: /etc/webmin/letsencrypt-key.pem
Certificate file: /etc/webmin/letsencrypt-cert.pem
Redirect non-SSL to SSL: No
SSL protocol version: Detect automatically
SSL versions to reject: only TLSv1.2 is unchecked (i.e. allowed)
Allow compressed SSL connections: No
Force use of server-defined cipher order: Yes
Allowed SSL Ciphers: Only strong PCI-compliant ciphers
Additional certificate files: /etc/webmin/letsencrypt-ca.pem
However, if I go to that tab and change nothing, just accept the settings there, I get the error
Failed to save SSL options : The SSL private key file /etc/webmin/letsencrypt-key.pem does not exist or does not contain a PEM format key
The file definitely exists, so I guess it’s not in the PEM format. So it still says the cert is self-signed and not trusted when I go there in my browser.
When I generate the script on the Let’s Encrypt tab, I have it set to :
Hostnames for certificate: hostname.example.com
Website root directory for validation file: /home/hostname/public_html
Copy new key and certificate to Webmin?: Yes
And when I do that, it does in fact put the certificate files in /etc/webmin, but no matter what I get the error when I try to save my settings, saying it’s not in PM format.
I would love to know what I’m doing wrong!