Hello there, so i made a self signed certificate, then later on found out that it has wrong info and made a new one, but for some reason even though i deleted the wrong certificate the server still sends it to the browser and the browser keeps rejecting it.
How can i properly make nextcloud send the correct certificate. I update the default-ssl.conf file to read the mydomain.com.crt and mydomain.com.key files (the .key file is not the root/private .key file). then checked the apache2 configtest syntax is ok, then reloaded apache2 with no errors but still that didn’t help either.
Sounds like you already did everything usually necessary.
One additional thing you can at least try, is performing a full reload (CTRL + F5) or even temporary deactivating the cache in the browser in the developer console under “Network” and then hit the check box “Disable cache”.
If disabling the cache works, you can delete the cache at all in the browser’s settings.
I did try that but i don’t think the issue is with the browser because i tried it will different browsers and still no luck.
I think the issue is with the nextcloud server itself, why does it keep sending the wrong certificate which is DELETED in the first place. like i find that extremely weird and frustrating lol.
im using WinSCP to search for all .crt files that i have on the server but only the ones that i created and built in ones are showing up so u don’t know if that would be the cause.
there should be one config files (if im not wrong) that tells apache2 which sites are enabled and which ports to listen to.
i don’t know about the last point maybe that could be the cause, is there a way to “update” the proxy server with the new certificate somehow?
Thank you so far for the help and advice though! <3
I encountered a similar issue. Connecting to my nextcloud instance through any browser or device resulted in an expired certificate notification. Despite replacing the certificates in /etc/letsencrypt/live/mydomain.com/ and restarting apache, rebooting the machine, etc.
The solution was in my firewall. I’m running pfsense with HAProxy. The trick for me was Turning off SSL Offloading on the HAProxy https frontend, reloading, then turning it on again and reloading.