Submitted by FinanceGuy on Mon, 01/23/2017 - 22:37 Pro Licensee
Hi, I've been using VirtualMin for years and love it. Right now I'm getting an error message when trying to renew a LetsEncrypt SSL cert. The error is:
ValueError: Error signing certificate: 400 { "type": "urn:acme:error:malformed", "detail": "Invalid key in certificate request :: Key too small: 1024", "status": 400 }
I've tried generating a new CSR with 2048 and then rerunning request. I also tried creating a self-signed cert with 2048 to try to wipe out the existing cert. Then I requested a new LetsEncrypt cert and received the same issue.
Searched the forums, couldn't find an answer.
Thanks!
Status:
Active
Comments
Submitted by andreychek on Tue, 01/24/2017 - 11:23 Comment #1
Howdy -- if you go into System Settings -> Virtualmin Config -> SSL Settings, what is "Default SSL key size" set to?
Submitted by FinanceGuy on Wed, 01/25/2017 - 23:07 Pro Licensee Comment #2
Woohoo, it was at 1024. I never went to that screen before, was 1024 a leftover? I've been using VirtualMin for 8 years now.
Will post back if this doesn't fix it and thanks again!
Submitted by andreychek on Thu, 01/26/2017 - 08:18 Comment #3
I'm glad that fixed it!
Yeah key sizes are larger by default now, but yeah that older size could be leftover from earlier version.