Let's encrypt issue

Configuration
1

Hey there, I’m having an issue getting let’s encrypt working.
I am getting this error when I connect using the duckDNS address (through Chrome):

This site can’t provide a secure connection

xxxxxx.duckdns.org didn’t accept your login certificate, or one may not have been provided.
Try contacting the system admin.
ERR_BAD_SSL_CLIENT_AUTH_CERT

And the pi’s IP give’s this error (through Chrome):

This site can’t be reached
The connection was reset.

The HASS log is also empty.
I can connect locally via the pi’s IP address to home assistant if I remove the HTTP lines in the config.
Any Ideas?

All of the certificates have 755 permission (I also tried 777 but no luck)

2

Make sure that the HA user is the group/owner of the cert files and directories.

1 Like
3

@rpitera I created the certificates with the pi user.
What should I do so that I can change the owner or the certificate?
(Newbie speaking here)

4

depending on who made the certificate

if root then sudo chown homeassistant:homeassistant filename assuming HA’s user is homeassistant
if made by any other user then as the user you can just chown homeassistant:homeassistant filename

it’s usually just easier to do it as sudo

1 Like
5

thanks
But HA still not working.

Still getting:

Safari can’t open the page “https://removed.duckdns.org/”. The error is: “The server “removed.duckdns.org” did not accept the certificate.” (NSURLErrorDomain:-1205)

6

Figured it out myself. I just had to forward port 8123 to 8123 instead of 443 to 8123.
One minus, I need to type :8123 after the URL

7

Once you update the cert, you can switch back to your previous port forwarding. Also - you probably have port 80 aimed at HA - you can turn that off after updating the cert.

8

Hi, can anyone help me out, I am getting this error but I’m not sure what Cert has expired? I have been into DuckDNS and I can’t see any issues?

07
07966×546 150 KB