Support intro
Hi,
using Hetzner’s preconfigurated nextcloud image.
the only thing I changed in the SSL Certificate. Using Comodo Positive wildcard certificate now.
tried to configure email-settings with Login-Data which is working fine for Thunderbird, but I always get the message “Unable to connect with TLS encryption”
searched already this forum but none of the provided solution did help for me…
any help appreciated.
thx,
reisetroll
Nextcloud version 15.0.2
Operating system and version Ubuntu 18.04.1 LTS
Apache or nginx version Apache/2.4.29 (Ubuntu)
PHP version PHP 7.2.10-0ubuntu0.18.04.1
Is this the first time you’ve seen this error? Y:
Steps to replicate it:
- configure Mail with SMTP, STARTTLS and normal LOGIN
- try to send test mail
The output of your Nextcloud log in Admin > Logging:
Error PHP stream_socket_enable_crypto(): SSL operation failed with code 1. OpenSSL Error messages: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed at /var/www/nextcloud/3rdparty/swiftmailer/swiftmailer/lib/classes/Swift/Transport/StreamBuffer.php#94
2019-01-14T09:54:14+0100
/etc/apache2/sites-available/nextcloud.conf
Alias /nextcloud “/var/www/nextcloud/”
ServerName nextcloud.xxxxxxxx.at
<Directory /var/www/nextcloud/>
_ Options +FollowSymlinks_
_ AllowOverride All_
_ _
_ Dav off_
_ _
_ SetEnv HOME /var/www/nextcloud_
_ SetEnv HTTP_HOME /var/www/nextcloud_
Header always set Referrer-Policy no-referrer
/etc/apache2/sites-available/default_ssl.conf
ServerAdmin webadmin@xxxxxxxxxxx.at ServerName nextcloud.xxxxxxxxxxx.at DocumentRoot /var/www/nextcloud ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
SSLEngine on
SSLCertificateKeyFile /etc/ssl/private/STAR_xxxxxxxxxxx.at.key
SSLCertificateFile /etc/ssl/certs/STAR_xxxxxxxxxxx_at_bundle.crt
SSLCertificateChainFile /etc/ssl/certs/STAR_xxxxxxxxxxx_at.bundle
<FilesMatch "\.(cgi|shtml|phtml|php)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory /usr/lib/cgi-bin>
SSLOptions +StdEnvVars
</Directory>
<IfModule mod_headers.c>
Header always set Strict-Transport-Security "max-age=15768000; preload"
Header set Referrer-Policy "no-referrer-when-downgrade"
</IfModule>
</VirtualHost>