LetsEncrypt Alias not added to Aapache vhost config files
After the following steps:
- updating to ISPConfig 3.1.2
- enabling SSL and LetsEncrypt for that domain
- saving and waiting until ISPConfig regenerated the Apache vhost config file for that domain
the issuing of a LetsEncrypt certificate failed with a message like this:
Failed authorization procedure. example.com (http-01): unauthorized :: The client lacks sufficient authorization :: Invalid response from
http://example.com/.well-known/acme-challenge/BVKdxVLUPa2d[…]
Similarly, a request for http://example.com/.well-known/acme-challenge/empty.dir
failed with Error 404.
I found that I have the required config snippet in /etc/apache2/sites-enabled/000-ispconfig.conf
(as instructed here):
Alias /.well-known/acme-challenge /usr/local/ispconfig/interface/acme/.well-known/acme-challenge
<Directory /usr/local/ispconfig/interface/acme/.well-known/acme-challenge>
Require all granted
</Directory>
However only after adding that same config snippet also to the Apache vhost config file of the affected domain (via "Options → Apache Directives" in the ISPConfig site configuration form), issuing the certificate worked properly.
It seems like the mechanism to get this configuration into domain vhost config files is maybe broken?