Having Trouble Getting an SSL Certificate and Connecting to the Site

Developer help
1

I’m setting up a Ghost site via DigitalOcean. I’ve done this before with no issues, but this time it won’t let me set up a SSL and the website is not visible at the domain.

  • What’s your URL? blog.susqu.org
  • What version of Ghost are you using? 5.40.2

And

  • How was Ghost installed and configured? DigitalOcean One-Click App
  • What Node version, database, OS & browser are you using? I don’t know.
  • What errors or information do you see in the console? When I try to setup SSL, I get this:
Summary

**One or more errors occurred.

  1. ProcessError

Message: Command failed: /bin/sh -c sudo -S -p ‘#node-sudo-passwd#’ /etc/letsencrypt/acme.sh --issue --home /etc/letsencrypt --server letsencrypt --domain blog.susqu.org --webroot /var/www/ghost/system/nginx-root --reloadcmd “nginx -s reload” --accountemail staff@susqu.org
[Thu Mar 30 13:28:18 UTC 2023] blog.susqu.org:Verify error:62.243.187.10: Fetching http://blog.susqu.org/.well-known/acme-challenge/k2qyImt19wBmPUJ5eDfFFCC6dV_hdGwARttAPn5nGWo: Timeout during connect (likely firewall problem)
[Thu Mar 30 13:28:18 UTC 2023] Please add ‘–debug’ or ‘–log’ to check more details.
[Thu Mar 30 13:28:18 UTC 2023] See: How to debug acme.sh · acmesh-official/acme.sh Wiki · GitHub

[Thu Mar 30 13:28:03 UTC 2023] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Thu Mar 30 13:28:03 UTC 2023] Single domain=‘blog.susqu.org
[Thu Mar 30 13:28:03 UTC 2023] Getting domain auth token for each domain
[Thu Mar 30 13:28:05 UTC 2023] Getting webroot for domain=‘blog.susqu.org
[Thu Mar 30 13:28:05 UTC 2023] Verifying: blog.susqu.org
[Thu Mar 30 13:28:06 UTC 2023] Pending, The CA is processing your order, please just wait. (1/30)
[Thu Mar 30 13:28:08 UTC 2023] Pending, The CA is processing your order, please just wait. (2/30)
[Thu Mar 30 13:28:10 UTC 2023] Pending, The CA is processing your order, please just wait. (3/30)
[Thu Mar 30 13:28:13 UTC 2023] Pending, The CA is processing your order, please just wait. (4/30)
[Thu Mar 30 13:28:15 UTC 2023] Pending, The CA is processing your order, please just wait. (5/30)

Exit code: 1

Debug Information:
OS: Ubuntu, v22.04.1 LTS
Node Version: v16.17.0
Ghost Version: 5.40.2
Ghost-CLI Version: 1.24.0
Environment: production
Command: ‘ghost setup ssl’

Additional log info available in: /home/ghost-mgr/.ghost/logs/ghost-cli-debug-2023-03-30T13_28_18_408Z.log

Try running ghost doctor to check your system for known issues.

You can always refer to Ghost-CLI - A fully loaded tool for installation and configuration for troubleshooting.
ghost-mgr@ghost-susqu-blog:/var/www/ghost$ cd
ghost-mgr@ghost-susqu-blog:~$ cd /var/log/letsencrypt
-bash: cd: /var/log/letsencrypt: No such file or directory
ghost-mgr@ghost-susqu-blog:~$ cd /var/log/letsencrypt
-bash: cd: /var/log/letsencrypt: No such file or directory
ghost-mgr@ghost-susqu-blog:~$ cd
ghost-mgr@ghost-susqu-blog:~$ cd /var/log/letsencrypt
-bash: cd: /var/log/letsencrypt: No such file or directory
ghost-mgr@ghost-susqu-blog:~$ cd
ghost-mgr@ghost-susqu-blog:~$ cd /var/www/ghost
ghost-mgr@ghost-susqu-blog:/var/www/ghost$ ghost setup ssl --debug

Love open source? We’re hiring JavaScript Engineers to work on Ghost full-time.
https://careers.ghost.org

? Enter your email (For SSL Certificate) staff@susqu.org

  • sudo /etc/letsencrypt/acme.sh --upgrade --home /etc/letsencrypt
  • sudo /etc/letsencrypt/acme.sh --issue --home /etc/letsencrypt --server letsencrypt --domain blog.susqu.org --webroot /var/www/ghost/system/nginx-root --reloadcmd “nginx -s reload” --accountemail staff@susqu.org
    :heavy_multiplication_x: Setting up SSL
    One or more errors occurred.
  1. ProcessError

Message: Command failed: /bin/sh -c sudo -S -p ‘#node-sudo-passwd#’ /etc/letsencrypt/acme.sh --issue --home /etc/letsencrypt --server letsencrypt --domain blog.susqu.org --webroot /var/www/ghost/system/nginx-root --reloadcmd “nginx -s reload” --accountemail staff@susqu.org
[Thu Mar 30 13:34:40 UTC 2023] blog.susqu.org:Verify error:62.243.187.10: Fetching http://blog.susqu.org/.well-known/acme-challenge/VzhYT2Alq5KV_jlho81K-BAuhWyJz9vx6FuyOEkoiS0: Timeout during connect (likely firewall problem)
[Thu Mar 30 13:34:40 UTC 2023] Please add ‘–debug’ or ‘–log’ to check more details.
[Thu Mar 30 13:34:40 UTC 2023] See: How to debug acme.sh · acmesh-official/acme.sh Wiki · GitHub

[Thu Mar 30 13:34:26 UTC 2023] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Thu Mar 30 13:34:26 UTC 2023] Single domain=‘blog.susqu.org
[Thu Mar 30 13:34:26 UTC 2023] Getting domain auth token for each domain
[Thu Mar 30 13:34:28 UTC 2023] Getting webroot for domain=‘blog.susqu.org
[Thu Mar 30 13:34:28 UTC 2023] Verifying: blog.susqu.org
[Thu Mar 30 13:34:28 UTC 2023] Pending, The CA is processing your order, please just wait. (1/30)
[Thu Mar 30 13:34:31 UTC 2023] Pending, The CA is processing your order, please just wait. (2/30)
[Thu Mar 30 13:34:33 UTC 2023] Pending, The CA is processing your order, please just wait. (3/30)
[Thu Mar 30 13:34:36 UTC 2023] Pending, The CA is processing your order, please just wait. (4/30)
[Thu Mar 30 13:34:38 UTC 2023] Pending, The CA is processing your order, please just wait. (5/30)**

  • What steps could someone else take to reproduce the issue you’re having? I’m not sure. I’ve started from scratch a few times and gotten the same issue.