AWS re:Postを使用することにより、以下に同意したことになります AWS re:Post 利用規約
AWS re:Postre:Post

Origin SSL check fails with the NEW Letsencrypt Issuer

0

Certificates on the origin from Letsencrypt worked fine for years now.
Yesterday one of the ssl certificate of a websites got renewed successfully.

But now cloudfront makes a 503 error only for this website (one of many)
other website with an older certifacte from letsencrypt still working fine.

The only difference is that LetsEncrypt now signes with a new issuer
Old issuers was: "Let's Encrypt Authority X3"
New issuer is: "R3"

Issuer Certifactes
https://letsencrypt.org/certificates/

There are two Intermediate certifiactes,
this one make the issue:
https://crt.sh/?id=3479778542

Issuer Statement:
https://letsencrypt.org/documents/isrg-cps-v3.0/

It seams that cloudfront dont trust the certifactes from the new letsencrypt issuer "R3"

Edited by: Zetanova on Dec 5, 2020 9:00 AM

トピック
ネットワークとコンテンツ配信
タグ
Amazon CloudFront
言語
English
Zetanova
質問済み 3年前264ビュー
1回答
0

My hosting system virtualmin only renewed the certificate but not the Intermediate certificate.

After updating the Intermediate certificate manually it is working again

Zetanova
回答済み 3年前

ログインしていません。 ログイン 回答を投稿する。

優れた回答とは、質問に明確に答え、建設的なフィードバックを提供し、質問者の専門分野におけるスキルの向上を促すものです。

質問に答えるためのガイドライン

関連するコンテンツ