Error when trying to connect Nextcloud with Document Server over HTTPS Nextcloud and Document Server selt-assigned certificates

I’m having trouble integrating onlyoffice document server running on ubuntu 16 to the nextcloud server also running on a separate ubuntu 16.

I have self-assigned certificates on both, nextcloud and onlyoffice document server.

I’ve had trouble with docker and with the install without a docker.

Currently, I’ve set up my document server using the following:
I’ve setup SSL certificate using the following guide:

When I go to my server is running “Document Server is running”

However when I apply the Document Server FQDN I get “Error when trying to connect”.

Both, nextcloud and document server use FQDN and are running over HTTPS. It works fine when I have Nextcloud over HTTP and document server without using SSL, but when I do this switch it doesn’t seem to be working.
I’m looking forward to hearing solutions.
Thank you!

Here is the config file for onlyoffice: /etc/nginx/conf.d/onlyoffice-documentserver.conf

[code]include /etc/nginx/includes/onlyoffice-http.conf;

Normal HTTP host

server {
listen [::]:80 default_server;
server_tokens off;

Redirects all traffic to the HTTPS host

root /nowhere; ## root doesn’t have to be a valid path since we are redirecting
rewrite ^ https://$host$request_uri? permanent;

#HTTP host for internal services
server {
listen [::1]:80;
server_name localhost;
server_tokens off;

include /etc/nginx/includes/onlyoffice-documentserver-common.conf;
include /etc/nginx/includes/onlyoffice-documentserver-docservice.conf;

HTTPS host

server {
listen ssl;
listen [::]:443 ssl default_server;
server_tokens off;
root /usr/share/nginx/html;

Strong SSL Security

ssl on;
ssl_certificate /app/onlyoffice/CommunityServer/data/certs/onlyoffice.crt;
ssl_certificate_key /app/onlyoffice/CommunityServer/data/certs/onlyoffice.key;

ssl_verify_client {{SSL_VERIFY_CLIENT}};

ssl_client_certificate {{CA_CERTIFICATES_PATH}};


ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_session_cache builtin:1000 shared:SSL:10m;

ssl_prefer_server_ciphers on;

add_header Strict-Transport-Security max-age=31536000;

add_header X-Frame-Options SAMEORIGIN;

add_header X-Content-Type-Options nosniff;

[Optional] If your certficate has OCSP, enable OCSP stapling to reduce the overhead and latency of running SSL.

Replace with your ssl_trusted_certificate. For more info see:




ssl_stapling on;

ssl_stapling_verify on;

ssl_trusted_certificate /etc/nginx/ssl/stapling.trusted.crt;

resolver valid=300s; # Can change to your DNS resolver if desired

resolver_timeout 10s;

[Optional] Generate a stronger DHE parameter:

cd /etc/ssl/certs

sudo openssl dhparam -out dhparam.pem 4096

ssl_dhparam /app/onlyoffice/CommunityServer/data/certs/dhparam.pem;

include /etc/nginx/includes/onlyoffice-documentserver-*.conf;


NextCloud Version 12.0
Latest version of Document Server and OnlyOffice app as of 5/31/2017

I also couldn’t get it to work with self signed certs. Though it isn’t too hard to get going with letsencrypt

This I need to be local that is not using an actual domain. In the nginx I do see errorr 22450 no “ssl_certificate” is defined in server listening on SSL port while SSL handshaking, client: X.X.X.X server I’m wondering while this is the issue and whether this error persisted with the previous configuration.
I’ve never used letsencrypt. I don’t believe I can assign it to non-existent domain. I believe I’d have to open up a port through firewall for the letsencrypt and use legitimate domain. Is that the case with letsencrypt?


Indeed you’d need a public domain to use LE. If you had one you could use internally you could do manual verification and move the certs to your private webserver.