Below are potential resolutions to solving SSL issues you might experience.
SSL Issue: Not Getting Final “Valid” Status on SSL Certificate
- Only if it seems you’re having issues on getting final SSL validations, try & check for any available updates in DirectAdmin Admin | Server Manager | System Packages. If updates are needed, you can apply them by following these sections’ checklists:
- Another cause, at times, can be just a browser caching issue, hanging on to the old cert (or no cert at all). I experience this about 10% of the time when making SSL cert changes. So, visit this quick checklist to work through Clearing Browser of SSL Certificates.
- Another cause can be that domain is using different nameservers, possibly due to your CDN requirements, like in QUIC.cloud CDN. If that’s the case, remove those domains from the Chain used for the server’s SSL certificate by following these steps.
- From DirectAdmin (Admin), go to Admin SSL.
- Click on <ACME Settings>.
- Scroll down and click to <Remove> any domains that are using different nameservers.
- Then, click <Submit>.
- Then, retry a server’s certificate renewal by going to Server Manager | Server TLS Certificate. Click on <Renew Now>. In a few seconds, you might receive the message it’s been renewed.
- If this is a domain move from an old server, ensure you removed the this domain from the SSL chain cert (or other SSL cert) on the old server.
- Don’t continue with remaining steps until the SSL Certificate shows as “Valid”, and preferably, for all 4 status items to be shown with a green “Yes”