Win-acme: [SOLVED] Let's Encrypt Authority X1 instead of X3
Hello,
First, I apologize for my english.
I'm using v2.0.8.356 with a IIS website, and it's working great.
But I noticed that the certificate is using the Let's Encrypt Authority X1 (AFAIK it's still valid but we shouldn't be using that anymore) , instead of the most recent X3 as an intermediate certificate.
https://letsencrypt.org/certificates/
Is this normal ? Did I miss something ?
EDIT => Ok, I had to delete the old X1 from the computer certificates store, and regenerate one, it's ok now.
Last thing, I noticed that SSLLabs is telling me that I'm not sending the intermediate certificate. Is it a IIS problem ?
Thx you.
Rootax
All 3 comments
This was a common problem when let's encrypt made the transition to X3. If i remember correctly you need to load mmc cert snap-in as the SYSTEM account (using psexec) and remove the X1 intermediate cert.
LBegnaud
on 8 Jul 2019
That was it, thx you :)
Rootax
on 12 Jul 2019
glad to help
LBegnaud
on 12 Jul 2019
Related issues
AHTUxPK
路
3Comments
tasheyyla
路
3Comments
rickster2
路
3Comments
dichternebel
路
3Comments
snudel
路
3Comments
Most helpful comment
This was a common problem when let's encrypt made the transition to X3. If i remember correctly you need to load mmc cert snap-in as the SYSTEM account (using psexec) and remove the X1 intermediate cert.
https://community.letsencrypt.org/t/iis-8-5-building-incorrect-chain-with-lets-encrypt-authority-x3/13320/29